Stored Cross-Site Scripting Vulnerability in BIG-IQ Configuration Utility by F5 Networks
CVE-2024-47139

Currently unrated

Key Information:

Vendor: F5 Networks
Status: BIG-IQ Configuration Utility
Vendor: CVE Published:; 16 October 2024

Summary

A stored cross-site scripting vulnerability in the BIG-IQ Configuration utility allows an attacker with Administrator privileges to inject malicious JavaScript code. When executed, this vulnerability can compromise the security of the currently logged-in user's session, potentially leading to unauthorized access to sensitive information and manipulation of application data.

References

https://my.f5.com/manage/s/article/K000141080

Timeline

Vulnerability published
Oct 16, 2024