Reflected Cross-Site Scripting (XSS) Vulnerability in BIG-IP APM Webtop Configuration
CVE-2019-6591 · LOW Severity
AV:N/AC:M/AU:S/C:N/I:P/A:N
On BIG-IP APM 14.0.0 to 14.0.0.4, 13.0.0 to 13.1.1.3 and 12.1.0 to 12.1.3.7, a reflected cross-site scripting (XSS) vulnerability exists in the resource information page for authenticated users when a full webtop is configured on the BIG-IP APM system.
Learn more about our Web App Pen Testing.