2965 matches found
Firewall information leak to regular SSL VPN web portal users
A SSL VPN user logged in via the web portal can access internal FortiOS configuration information eg: addresses via specifically crafted URLs...
FortiOS SSL Deep-Inspection Proxy Mode badssl.com Compliance
US-Cert published a document at which outlines some security flaws that may be introduced by the use of SSL Deep-Inspection.Â...
Fortinet FortiOS Local Elevation of Privilege Vulnerability
Fortinet FortiOS is a set of security operating system developed by the U.S. Fiat Fortinet company dedicated to FortiGate network security platform. The system provides users with firewall, antivirus, IPSec/SSL VPN, Web content filtering and anti-spam and other security features. A local elevatio...
CVE-2012-0941
Multiple cross-site scripting XSS vulnerabilities in Fortinet FortiGate UTM WAF appliances with FortiOS 4.3.x before 4.3.6 allow remote attackers to inject arbitrary web script or HTML via vectors involving the 1 Endpoint Monitor, 2 Dialup List, or 3 Log&Report Display modules, or the...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Fortinet FortiGate UTM WAF appliances with FortiOS 4.3.x before 4.3.6 allow remote attackers to inject arbitrary web script or HTML via vectors involving the 1 Endpoint Monitor, 2 Dialup List, or 3 Log&Report Display modules, or the...
CVE-2012-0941
Fortinet FortiGate UTM WAF appliances running FortiOS 4.3.x before 4.3.6 are affected by multiple XSS vulnerabilities. Exploitation vectors include the Endpoint Monitor, Dialup List, or Log&Report Display modules, or the fields_sorted_opt parameter to user/auth/list and endpointcompliance/app_det...
Fortinet FortiOS 5.x < 5.4.8 / 5.6.x < 5.6.3 HTTP Host Header XSS(FG-IR-17-262)
The version of Fortinet FortiOS running on the remote device is 5.x prior to 5.4.8, or 5.6.x prior to 5.6.3. It is, therefore, affected by a Cross-site Scripting XSS vulnerability that would allow an attacker to inject an HTML request through the 'Host' headers of the web proxy disclaimer page...
CVE-2017-14190
A Cross-site Scripting vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.7, 5.2 and earlier, allows attacker to inject arbitrary web script or HTML via maliciously crafted "Host" header in user HTTP requests...
Cross site scripting
A Cross-site Scripting vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.7, 5.2 and earlier, allows attacker to inject arbitrary web script or HTML via maliciously crafted "Host" header in user HTTP requests...
CVE-2017-14190
A Cross-site Scripting vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.7, 5.2 and earlier, allows attacker to inject arbitrary web script or HTML via maliciously crafted "Host" header in user HTTP requests...
CVE-2017-14190
Fortinet FortiOS 5.x is affected by a Cross-site Scripting (XSS) vulnerability exploitable via a crafted Host header in HTTP requests. Affected versions include 5.4.x up to 5.4.7 and 5.6.x up to 5.6.2 (and 5.2 and earlier per sources). The issue stems from inadequate input filtering on the Host h...
CVE-2017-14190
A Cross-site Scripting vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.7, 5.2 and earlier, allows attacker to inject arbitrary web script or HTML via maliciously crafted "Host" header in user HTTP requests...
CVE-2017-14190
A Cross-site Scripting vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.7, 5.2 and earlier, allows attacker to inject arbitrary web script or HTML via maliciously crafted "Host" header in user HTTP requests...
Fortinet FortiOS Cross-Site Scripting Vulnerability (CNVD-2018-03219)
Fortinet FortiOS is a set of security operating system developed by the U.S. Fiat Fortinet company dedicated to FortiGate network security platform. The system provides users with firewall, antivirus, IPSec/SSL VPN, Web content filtering and anti-spam and other security features. A cross-site...
HTTP Host header attacks against web proxy disclaimer response webpage
The FortiOS web proxy disclaimer page is potentially vulnerable to an XSS attack, via maliciously crafted "Host" headers in user HTTP requests. The latter is possible if an attacker is in a Man-in-the-middle position i.e. able to modify the HTTP requests of the potential victim before they reach...
Information disclosure
An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.5, 5.2 and below versions allow an admin user with superadmin privileges to view the current SSL VPN web portal session info which may contains user credentials through the fnsysctl CLI command...
CVE-2017-7738
An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.5, 5.2 and below versions allow an admin user with superadmin privileges to view the current SSL VPN web portal session info which may contains user credentials through the fnsysctl CLI command...
CVE-2017-7738
An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.5, 5.2 and below versions allow an admin user with superadmin privileges to view the current SSL VPN web portal session info which may contains user credentials through the fnsysctl CLI command...
CVE-2017-7738
An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.5, 5.2 and below versions allow an admin user with superadmin privileges to view the current SSL VPN web portal session info which may contains user credentials through the fnsysctl CLI command...
CVE-2017-7738
Fortinet FortiOS has an information disclosure vulnerability (CVE-2017-7738) affecting FortiOS 5.6.0–5.6.2, 5.4.0–5.4.5, and 5.2 and earlier. An admin with super_admin privileges can view the SSL VPN web portal session info via the fnsysctl CLI, potentially exposing user credentials. Related advi...