Vulnerabilities > CVE-2022-27880 - Unspecified vulnerability in F5 Traffix Signaling Delivery Controller 5.1.0/5.2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the Traffix SDC Configuration utility that allows an attacker to execute JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |