CVE-2021-22993 - F5 Big-ip Advanced Web Application Firewall and F5 Big-ip Application Security Manager

Critical 8.8

On BIG-IP Advanced WAF and BIG-IP ASM versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.6, and 12.1.x before 12.1.5.3, DOM-based XSS on DoS Profile properties page. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.

Affected software

F5 Big-ip Advanced Web Application Firewall

F5 Big-ip Application Security Manager

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.