Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistFortinetCVELIST:CVE-2018-1354
HistoryJun 27, 2018 - 8:00 p.m.

CVE-2018-1354

2018-06-2720:00:00
fortinet
www.cve.org
5

EPSS

0.002

Percentile

52.3%

JSON

An improper access control vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions, FortiAnalyzer 6.0.0, 5.6.5 and below versions allows a regular user edit the avatar picture of other users with arbitrary content.

CNA Affected

[
  {
    "product": "Fortinet FortiManager, FortiAnalyzer",
    "vendor": "Fortinet, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "FortiManager 6.0.0, 5.6.5 and below versions"
      },
      {
        "status": "affected",
        "version": "FortiAnalyzer 6.0.0, 5.6.5 and below versions"
      }
    ]
  }
]

Related

fortinet 1
cve 1
prion 1
nvd 1
fortinet
fortinet
FortiAnalyzer and FortiManager admin user avatar setting improper access control
2018-06-22 00:00:00
cve
cve
CVE-2018-1354
2018-06-27 20:29:03
prion
prion
Improper access control
2018-06-27 20:29:00
nvd
nvd
CVE-2018-1354
2018-06-27 20:29:03

EPSS

0.002

Percentile

52.3%

JSON
Related for CVELIST:CVE-2018-1354
fortinet1cve1prion1nvd1