Solve vulnerability JQuery 1.2 < 3.5.0 Multiple XSS

Hello, anyone know how can i solve vulnerabilty JQuery 1.2 < 3.5.0 Multiple XSS ? we have Firebox XTM850 with 12.1.3 OS but nessus always detect this vulnerabilty.

Comments

  • james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @fergzzmty

    The following feature requests are open to upgrade the JQuery version on the firewall's WebUI:
    T&M series: FBX-19778
    XTM: FBX121X-136

    -James Carson
    WatchGuard Customer Support

  • Thank you James for your prompt reply, FBX121X-136 is not available yet ? because i didnt found it

  • Open - means not available yet

  • Thank you Bruce

  • I'm waiting for this feature request.

  • Is there a website I can use to track these feature requests like FBX-19778? I'm still seeing this in my Nessus scans.

    Thanks

  • Unfortunately no.
    Open a support case and mention the feature request number in it.
    You will be notified when the feature is available via e-mail.

  • Are you scanning from outside? The management ports should not be open to the whole world.

    Have you updated to Fireware 12.1.3 Update 8 to protect against Cyclops Blink, and have you closed your management ports to the general Internet?

    If scanning from outside, that should satisfy their scans, right?

    Gregg Hill

Sign In to comment.