On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, a reflected Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an authenticated user to execute JavaScript for the currently logged-in user.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: f5

Published: 2018-10-19T13:00:00Z

Updated: 2024-09-17T03:33:09.101Z

Reserved: 2018-08-14T00:00:00

Link: CVE-2018-15312

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-10-19T13:29:00.243

Modified: 2024-11-21T03:50:32.140

Link: CVE-2018-15312

cve-icon Redhat

No data.