First published: Tue Sep 12 2017(Updated: )
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.2.0 through 5.2.11 and 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via the "Groups" input while creating or editing User Groups.
Credit: psirt@fortinet.com
Affected Software | Affected Version | How to fix |
---|---|---|
Fortinet FortiOS | =5.2.0 | |
Fortinet FortiOS | =5.2.1 | |
Fortinet FortiOS | =5.2.2 | |
Fortinet FortiOS | =5.2.3 | |
Fortinet FortiOS | =5.2.4 | |
Fortinet FortiOS | =5.2.5 | |
Fortinet FortiOS | =5.2.6 | |
Fortinet FortiOS | =5.2.7 | |
Fortinet FortiOS | =5.2.8 | |
Fortinet FortiOS | =5.2.9 | |
Fortinet FortiOS | =5.2.10 | |
Fortinet FortiOS | =5.2.11 | |
Fortinet FortiOS | =5.4.0 | |
Fortinet FortiOS | =5.4.1 | |
Fortinet FortiOS | =5.4.2 | |
Fortinet FortiOS | =5.4.3 | |
Fortinet FortiOS | =5.4.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.