BugZero | F5 BugID 1032405 - TMUI XSS vulnerability CVE-2021-23037

F5 - Defect ID: 1032405

TMUI XSS vulnerability CVE-2021-23037

F5 - Defect ID: 1032405

TMUI XSS vulnerability CVE-2021-23037

Last updated on January 2nd, 2026

BugZero Risk Score
9.4 High

Overall: 9.4

Severity: 10.0

Community: 4.2

Lifecycle: 8.3

What is the BugZero Risk Score?

F5 Integration

Learn more about where this data comes from

F5 Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Priority: 1-Blocking
Status: Verified
Impact Category: TMOS
Views: 11

Description

No description provided.

Change history

2025-09-25 Added: 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4

Links

Original Vendor Announcement

Relevant Products

Click on a version to see all relevant bugs

Affected versions:15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4

Fixed versions: 17.0.0, 16.1.2, 15.1.4.1, 14.1.4.5, 13.1.5

Relevant Products

Click on a version to see all relevant bugs

Affected versions:15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4

Fixed versions: 17.0.0, 16.1.2, 15.1.4.1, 14.1.4.5, 13.1.5

Top F5 Defects

9.4Defect ID: 970269
Install fails as lind keeps failing due to "Fatal error: block id new probe failed - device file:/dev/cdrom"
9.4Defect ID: 1032405
TMUI XSS vulnerability CVE-2021-23037
9.3Defect ID: 1010597
Traffic disruption when virtual server is assigned to a non-default route domain
9.3Defect ID: 1505789
VPN connection fails with Edge client 7.2.4.6 with error "Network is vulnerable"
8.6Defect ID: 446482
ASM Charts: Custom Advanced Filters not working

Ready to prevent the next vendor outage?

Get a demo

F5 Integration

Learn more about where this data comes from

F5 Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

F5 - Defect ID: 1032405

TMUI XSS vulnerability CVE-2021-23037

F5 - Defect ID: 1032405

TMUI XSS vulnerability CVE-2021-23037

Last updated on January 2nd, 2026

BugZero Risk Score9.4 High

Bug Details

Links

Top F5 Defects

Ready to prevent the next vendor outage?

BugZero Risk Score
9.4 High