CVE-2024-31156

CVSS V2 None CVSS V3 None
Description
A stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Overview
  • CVE ID
  • CVE-2024-31156
  • Assigner
  • f5
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-05-08T15:01:27.734Z
  • Last Modified Date
  • 2024-06-04T17:37:10.115Z
References
Reference URL Reference Tags
https://my.f5.com/manage/s/article/K000138636 vendor-advisory
History
Created Old Value New Value Data Type Notes
2024-06-25 22:44:17 Added to TrackCVE