Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In BIG-IP versions 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, and 14.1.0-14.1.2.7, undisclosed TMUI page contains a stored cross site scripting vulnerability (XSS). The issue allows a minor privilege escalation for resource admin to escalate to full admin.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
F5 BIG-IP 跨站脚本漏洞
Vulnerability Description
F5 BIG-IP是美国F5公司的一款集成了网络流量管理、应用程序安全管理、负载均衡等功能的应用交付平台。 F5 TMUI 存在跨站脚本漏洞,该漏洞源于未公开的TMUI页面,具有资源管理员权限的经过身份验证的恶意用户能够利用此漏洞将其角色升级为完全管理员特权并执行系统命令。以下产品及版本受到影响:BIG-IP 16.0.0,15.0.0至15.1.0,14.1.0至14.1.2。
CVSS Information
N/A
Vulnerability Type
N/A