A cross-site scripting (XSS) vulnerability exists in tmui/dashboard/echo.jsp for the BIG-IP Configuration utility and the Enterprise Manager Configuration utility.
Impact
Some echo.jsp parameters may allow an attacker to bypass cross-site scripting (XSS) protection mechanisms using a crafted string.