CVE-2017-7735
N/A
N/A
Summary
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 through 5.2.11 and 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Fortinet, Inc. | Fortinet FortiOS | FortiOS versions 5.2.0 through 5.2.11, and 5.4.0 through 5.4.4 | affected |
Weaknesses
- Execute unauthorized code or commands
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id/1038705
- https://fortiguard.com/advisory/FG-IR-17-127
- http://www.securityfocus.com/bid/99098
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- http://www.securitytracker.com/id/1038705
- https://fortiguard.com/advisory/FG-IR-17-127
- http://www.securityfocus.com/bid/99098
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.