Lucene search
PRIOn knowledge basePRION:CVE-2017-17541HistoryJul 16, 2018 - 8:29 p.m.
Cross site scripting
2018-07-1620:29:00
PRIOn knowledge base
www.prio-n.com
1
0.001 Low
EPSS
Percentile
47.0%
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.4 and below versions, FortiAnalyzer 6.0.0, 5.6.4 and below versions allows inject Javascript code and HTML tags through the CN value of CA and CRL certificates via the import CA and CRL certificates feature.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortianalyzer_firmware | le | 5.6.4 | |
| fortianalyzer_firmware | eq | 6.0.0 | |
| fortimanager_firmware | le | 5.6.4 | |
| fortimanager_firmware | eq | 6.0.0 |
Related
fortinet
fortinet
Stored XSS under CA and CRL certificate view page
2018-07-05 00:00:00
cve
cve
CVE-2017-17541
2018-07-16 20:29:00
cvelist
cvelist
CVE-2017-17541
2018-07-16 20:00:00
nvd
nvd
CVE-2017-17541
2018-07-16 20:29:00