On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.3, 12.1.0-12.1.3.7, and 11.6.0-11.6.3.2, a reflected Cross Site Scripting (XSS) vulnerability is present in an undisclosed page of the BIG-IP TMUI (Traffic. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
XSS
Big Ip Local Traffic Manager
Big Ip Application Acceleration Manager
Big Ip Advanced Firewall Manager
Big Ip Analytics
+9
NVD
CVSS 3.0
6.1
EPSS
0.8%