CVE-2014-8616

MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.2.x before 5.2.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to the (1) user group or (2) vpn template menus.

Score CVSS v2.0

4.3

/ 10.0

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N

Informations

Publié: 12 mai 2015
Mis à jour: 12 avr. 2025
Statut: Deferred
Source: cve@mitre.org

Produits affectés

fortinet fortiosToutes les CVE Fortinet FortiOS →

Versions : 5.2.0, 5.2.1, 5.2.2

Faiblesses (CWE)

CWE-79

Références (10)

http://www.fortiguard.com/advisory/FG-IR-15-005/
Vendor Advisory
http://www.securitytracker.com/id/1032261
http://www.securitytracker.com/id/1032262
http://www.securitytracker.com/id/1032264
http://www.securitytracker.com/id/1032265
http://www.fortiguard.com/advisory/FG-IR-15-005/
Vendor Advisory
http://www.securitytracker.com/id/1032261
http://www.securitytracker.com/id/1032262
http://www.securitytracker.com/id/1032264
http://www.securitytracker.com/id/1032265

CVEs similaires

Autres vulnérabilités de type CWE-79

Loading…

Surveillez vos produits

Recevez une alerte automatique à chaque nouvelle CVE affectant vos équipements.

Activer la surveillance