Fortinet

Fortianalyzer Firmware

12 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2017-17541

  • EPSS 0.17%
  • Published 16.07.2018 20:29:00
  • Last modified 21.11.2024 03:18:08

A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.4 and below versions, FortiAnalyzer 6.0.0, 5.6.4 and below versions allows inject Javascript code and HTML tags through the CN value of CA and CRL certificates via the imp...

6.1

CVE-2017-3126

  • EPSS 0.24%
  • Published 27.05.2017 00:29:00
  • Last modified 20.04.2025 01:37:25

An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4.0 through 5.4.2 allows attacker to execute unauthorized code or commands via the next parameter.

5.4

CVE-2015-7363

  • EPSS 0.33%
  • Published 07.10.2016 14:59:02
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the advanced settings page in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.3, in hardware models with a hard disk, and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.3 allows remote ad...

6.1

CVE-2016-3195

  • EPSS 0.3%
  • Published 19.08.2016 21:59:07
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the Web-UI in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attackers to inject arbitrary web script or HTML via uns...

6.1

CVE-2016-3194

  • EPSS 0.3%
  • Published 19.08.2016 21:59:06
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the address added page in Fortinet FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiAnalyzer 5.x before 5.0.13 and 5.2.x before 5.2.6 allows remote attackers to inject arbitrary web script or ...

5.4

CVE-2016-3193

  • EPSS 0.22%
  • Published 19.08.2016 21:59:05
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the appliance web-application in Fortinet FortiManager 5.x before 5.0.12, 5.2.x before 5.2.6, and 5.4.x before 5.4.1 and FortiAnalyzer 5.x before 5.0.13, 5.2.x before 5.2.6, and 5.4.x before 5.4.1 allows re...

5.4

CVE-2016-3196

  • EPSS 0.47%
  • Published 05.08.2016 14:59:06
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Fortinet FortiAnalyzer 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 allows remote authenticated users to inject arbitrary web script or HTML via the fil...

4.3

CVE-2015-3620

Exploit
  • EPSS 0.51%
  • Published 12.05.2015 19:59:23
  • Last modified 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the advanced dataset reports page in Fortinet FortiAnalyzer 5.0.0 through 5.0.10 and 5.2.0 through 5.2.1 and FortiManager 5.0.3 through 5.0.10 and 5.2.0 through 5.2.1 allows remote attackers to inject arbit...

4.3

CVE-2014-2334

  • EPSS 0.29%
  • Published 31.10.2014 14:55:02
  • Last modified 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-2336.

4.3

CVE-2014-2335

  • EPSS 0.3%
  • Published 31.10.2014 14:55:02
  • Last modified 12.04.2025 10:46:40

Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-2336.