Security Advisory

CVE-2020-5901

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-07-01 14:03:33

Last updated 2024-08-04 08:47:41

Assigner f5

State PUBLISHED

Description

In NGINX Controller 3.3.0-3.4.0, undisclosed API endpoints may allow for a reflected Cross Site Scripting (XSS) attack. If the victim user is logged in as admin this could result in a complete compromise of the system.

← Browse all CVEs View on cve.org ↗