FortiAnalyzer and FortiManager CVE-2015-3620 Cross Site Scripting Vulnerability

Bugtraq ID: 74646
Class: Input Validation Error
CVE: CVE-2015-3620
Remote: Yes
Local: No
Published: Feb 25 2015 12:00AM
Updated: Feb 25 2015 12:00AM
Credit: Jared Haight, William Costa, and Benjamin Kunz Mejri (Vulnerability Laboratory, Evolution Security GmbH).
Vulnerable: Fortinet FortiManager 5.2.1
Fortinet FortiManager 5.2
Fortinet FortiManager 5.0.10
Fortinet FortiManager 5.0.9
Fortinet FortiManager 5.0.8
Fortinet FortiManager 5.0.7
Fortinet FortiManager 5.0.6
Fortinet FortiManager 5.0.5
Fortinet FortiManager 5.0.4
Fortinet FortiManager 5.0.3
Fortinet FortiAnalyzer 5.2.1
Fortinet FortiAnalyzer 5.2
Fortinet FortiAnalyzer 5.0.10
Fortinet FortiAnalyzer 5.0.7
Fortinet FortiAnalyzer 5.0.5
Fortinet FortiAnalyzer 5.0.4
Fortinet FortiAnalyzer 5.0
Not Vulnerable: Fortinet FortiManager 5.2.2
Fortinet FortiAnalyzer 5.2.2


 

Privacy Statement
Copyright 2010, SecurityFocus