Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP FPS
Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3
Fixed In:
11.6.0 HF4
Opened: Nov 23, 2014 Severity: 3-Major
FPS JavaScript was injected into HTTP responses regardless their status code.
WebSafe components are easily identified.
Error response (status code 404).
None
FPS JavaScript is now injected only into responses with 2xx status codes.