Lucene search
K

628 matches found

CNVD
CNVD
added 2017/08/11 12:0 a.m.3 views

Fortinet FortiOS Information Disclosure Vulnerability (CNVD-2017-20964)

Fortinet FortiOS is a set of security operating system developed by the U.S. Fiat Fortinet company dedicated to FortiGate network security platform. The system provides users with firewall, antivirus, IPSec/SSL VPN, Web content filtering and anti-spam and other security features. An information...

7.5CVSS6.1AI score0.01449EPSS
Exploits0References1
OSV
OSV
added 2017/06/01 2:29 p.m.2 views

CVE-2017-3127

A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 through 5.2.10 allows attacker to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation...

6.1CVSS5.9AI score0.00961EPSS
Exploits0References3
Prion
Prion
added 2017/06/01 2:29 p.m.19 views

Cross site scripting

A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 through 5.2.10 allows attacker to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation...

4.3CVSS6.2AI score0.00961EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2017/06/01 2:29 p.m.16 views

CVE-2017-3127

A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 through 5.2.10 allows attacker to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation...

6.1CVSS6.3AI score0.00961EPSS
Exploits0References3
CVE
CVE
added 2017/06/01 2:0 p.m.55 views

CVE-2017-3127

CVE-2017-3127 is an XSS vulnerability in Fortinet FortiGate FortiOS versions 5.2.0–5.2.10, triggered by the srcintf parameter during Firewall Policy Creation. An authenticated remote attacker can inject scripts that run in a user’s browser session. Exploitation details are consistent with an XSS ...

6.1CVSS6.2AI score0.00961EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/06/01 2:0 p.m.29 views

CVE-2017-3127

A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 through 5.2.10 allows attacker to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation...

6.2AI score0.00961EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2017/06/01 2:0 p.m.11 views

CVE-2017-3127

A Cross-Site Scripting vulnerability in Fortinet FortiGate 5.2.0 through 5.2.10 allows attacker to execute unauthorized code or commands via the srcintf parameter during Firewall Policy Creation...

7AI score0.00961EPSS
Exploits0References3
CNVD
CNVD
added 2017/05/24 12:0 a.m.3 views

Fortinet FortiOS HTML Injection Vulnerability (CNVD-2017-10593)

Fortinet FortiOS is a set of security operating system developed by the U.S. Fiat Fortinet company dedicated to FortiGate network security platform. The system provides users with firewall, antivirus, IPSec/SSL VPN, Web content filtering and anti-spam and other security features. Fortinet FortiOS...

4.8CVSS7.7AI score0.00714EPSS
Exploits0References1
CNVD
CNVD
added 2017/05/03 12:0 a.m.3 views

Fortinet FortiGate/FortiOS Cross-Site Scripting Vulnerability

Fortinet FortiGate is a network security platform developed by Fortinet. The platform provides firewall, antivirus and intrusion prevention IPS, application control, anti-spam, wireless controller and WAN acceleration, etc. Fortinet FortiOS is a set of security operating system developed by...

6.1CVSS5.9AI score0.00961EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/04/04 12:0 a.m.7 views

Fortinet Fortigate Certificate Detection

Binary data 700048.prm...

7.3AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2017/03/30 2:59 p.m.4 views

CVE-2016-7541

Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode the default mode are not affected...

5.9CVSS5.5AI score0.00952EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2017/03/30 2:59 p.m.3 views

CVE-2016-7541

Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode the default mode are not affected...

5.9CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2017/03/30 2:59 p.m.17 views

CVE-2016-7541

Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode the default mode are not affected...

5.9CVSS5.8AI score0.00952EPSS
Exploits0References2
Prion
Prion
added 2017/03/30 2:59 p.m.14 views

Design/Logic Flaw

Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode the default mode are not affected...

4.3CVSS7.1AI score0.00952EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2017/03/30 2:0 p.m.15 views

CVE-2016-7541

Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode the default mode are not affected...

7.2AI score0.00952EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/03/30 2:0 p.m.21 views

CVE-2016-7541

Long lived sessions in Fortinet FortiGate devices with FortiOS 5.x before 5.4.0 could violate a security policy during IPS signature updates when the FortiGate's IPSengine is configured in flow mode. All FortiGate versions with IPS configured in proxy mode the default mode are not affected...

5.7AI score0.00952EPSS
Exploits0References2
CVE
CVE
added 2017/03/30 2:0 p.m.53 views

CVE-2016-7541

Fortinet FortiOS/FortiGate FortiGate devices with IPSengine configured in flow mode are affected by CVE-2016-7541. In FortiOS 5.x versions prior to 5.4.0, long‑lived sessions could violate an active security policy during IPS signature updates when the IPS engine is in flow mode; FortiGate device...

5.9CVSS5.7AI score0.00952EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/02/08 4:59 p.m.20 views

Information disclosure

The implementation of an ANSI X9.31 RNG in Fortinet FortiGate allows attackers to gain unauthorized read access to data handled by the device via IPSec/TLS decryption...

4.3CVSS6.9AI score0.01423EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/02/08 4:59 p.m.1 views

CVE-2016-8492

The implementation of an ANSI X9.31 RNG in Fortinet FortiGate allows attackers to gain unauthorized read access to data handled by the device via IPSec/TLS decryption...

5.9CVSS5.8AI score0.01423EPSS
Exploits0References2
NVD
NVD
added 2017/02/08 4:59 p.m.20 views

CVE-2016-8492

The implementation of an ANSI X9.31 RNG in Fortinet FortiGate allows attackers to gain unauthorized read access to data handled by the device via IPSec/TLS decryption...

5.9CVSS5.7AI score0.01423EPSS
Exploits0References2
Rows per page
Query Builder