Reflected Cross-Site Scripting (XSS) Vulnerability in BIG-IP APM Webtop Configuration

Reflected Cross-Site Scripting (XSS) Vulnerability in BIG-IP APM Webtop Configuration

CVE-2019-6591 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

On BIG-IP APM 14.0.0 to 14.0.0.4, 13.0.0 to 13.1.1.3 and 12.1.0 to 12.1.3.7, a reflected cross-site scripting (XSS) vulnerability exists in the resource information page for authenticated users when a full webtop is configured on the BIG-IP APM system.

Learn more about our Web App Pen Testing.