FortiManager and FortiAnalyzer CVE-2014-2335 Multiple Cross Site Scripting Vulnerabilities

Bugtraq ID: 70890
Class: Input Validation Error
CVE: CVE-2014-2335
Remote: Yes
Local: No
Published: Oct 30 2014 12:00AM
Updated: Oct 30 2014 12:00AM
Credit: Oded Vanunu and Adi Volkovitz of Check Point Security Research Team.
Vulnerable: Fortinet FortiManager 5.0.6
Fortinet FortiManager 4.3
Fortinet FortiManager 3.0
Fortinet Fortianalyzer Firmware 5.0.6
Fortinet Fortianalyzer Firmware 5.0.5
Fortinet Fortianalyzer Firmware 5.0.4
Not Vulnerable: Fortinet FortiManager 5.0.7
Fortinet Fortianalyzer Firmware 5.0.7


 

Privacy Statement
Copyright 2010, SecurityFocus