CVE-2020-12811

2020-09-24T18:15:00
ID CVE-2020-12811
Type cve
Reporter cve@mitre.org
Modified 2020-09-30T19:18:00

Description

An improper neutralization of script-related HTML tags in a web page in FortiManager 6.2.0, 6.2.1, 6.2.2, and 6.2.3and FortiAnalyzer 6.2.0, 6.2.1, 6.2.2, and 6.2.3 may allow an attacker to execute a cross site scripting (XSS) via the Identify Provider name field.