CVE-2017-3126

Summary

An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4.0 through 5.4.2 allows attacker to execute unauthorized code or commands via the next parameter.

Affected Software

VendorProductVersion RangeStatus
Fortinet, Inc.Fortinet FortiAnalyzer, FortiManagerFortiAnalyzer 5.4.2, 5.4.1, 5.4.0affected
Fortinet, Inc.Fortinet FortiAnalyzer, FortiManagerFortiManager 5.4.2, 5.4.1, 5.4.0affected

Weaknesses

  • Open redirect

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References