Cross-site scripting (XSS) vulnerability in installControl.php3 in F5 FirePass 4100 SSL VPN 5.4.2-5.5.2 and 6.0-6.2 allows remote attackers to inject arbitrary web script or HTML via the query string. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Software | From | Fixed in |
---|---|---|
f5 / firepass_4100 | - | - |
f5 / firepass_ssl_vpn | 5.4.2 | 5.4.2.x |
f5 / firepass_ssl_vpn | 5.5.2 | 5.5.2.x |
f5 / firepass_ssl_vpn | 6.0 | 6.0.x |
f5 / firepass_ssl_vpn | 6.2 | 6.2.x |