Multiple reflected cross-site scripting (XSS) vulnerabilities exist in undisclosed pages of the BIG-IP Configuration utility which allow an attacker to run JavaScript in the context of the currently logged-in user.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: f5

Published: 2023-05-03T14:33:49.646Z

Updated: 2024-08-02T12:09:43.436Z

Reserved: 2023-04-14T23:08:02.577Z

Link: CVE-2023-27378

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-05-03T15:15:12.587

Modified: 2024-11-21T07:52:47.307

Link: CVE-2023-27378

cve-icon Redhat

No data.