Lucene search
K

4 matches found

NVD
NVD
added 2019/05/28 7:29 p.m.18 views

CVE-2018-13375

An Improper Neutralization of Script-Related HTML Tags in Fortinet FortiAnalyzer 5.6.0 and below and FortiManager 5.6.0 and below allows an attacker to send DHCP request containing malicious scripts in the HOSTNAME parameter. The malicious script code is executed while viewing the logs in...

6.1CVSS6.3AI score0.00647EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2019/05/28 6:33 p.m.11 views

CVE-2018-13375

An Improper Neutralization of Script-Related HTML Tags in Fortinet FortiAnalyzer 5.6.0 and below and FortiManager 5.6.0 and below allows an attacker to send DHCP request containing malicious scripts in the HOSTNAME parameter. The malicious script code is executed while viewing the logs in...

6.8AI score0.00647EPSS
Exploits0References1
CVE
CVE
added 2019/05/28 6:33 p.m.111 views

CVE-2018-13375

CVE-2018-13375 is an XSS-style vulnerability in Fortinet products where FortiAnalyzer 5.6.0 and earlier and FortiManager 5.6.0 and earlier fail to properly neutralize script-related HTML tags in the DHCP HOSTNAME parameter. An attacker can inject malicious scripts via a DHCP request, and the scri...

6.1CVSS6.2AI score0.00647EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2019/05/28 6:33 p.m.22 views

CVE-2018-13375

An Improper Neutralization of Script-Related HTML Tags in Fortinet FortiAnalyzer 5.6.0 and below and FortiManager 5.6.0 and below allows an attacker to send DHCP request containing malicious scripts in the HOSTNAME parameter. The malicious script code is executed while viewing the logs in...

6.3AI score0.00647EPSS
Exploits0References1
Rows per page
Query Builder