CVE-2020-5889
N/A
N/A
Summary
On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, in BIG-IP APM portal access, a specially crafted HTTP request can lead to reflected XSS after the BIG-IP APM system rewrites the HTTP response from the untrusted backend server and sends it to the client.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | BIG-IP APM | 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, 14.1.0-14.1.2.3 | affected |
Weaknesses
- XSS
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.