Fortimanager Security Vulnerabilities and Issues — Fortimanager CVE List

Lucene search

FortinetFortimanager

4 matches found

CVE•added 2018/06/27 8:29 p.m.•52 views

CVE-2018-1354

An improper access control vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions, FortiAnalyzer 6.0.0, 5.6.5 and below versions allows a regular user edit the avatar picture of other users with arbitrary content.

6.5CVSS6.5AI score0.00165EPSS

CVE•added 2018/09/05 1:29 p.m.•44 views

CVE-2018-1353

An information disclosure vulnerability in Fortinet FortiManager 6.0.1 and below versions allows a standard user with adom assignment read the interface settings of vdoms unrelated to the assigned adom.

4.3CVSS4.2AI score0.00226EPSS

CVE•added 2018/06/28 3:29 p.m.•39 views

CVE-2018-1351

A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.6 and below versions allows attacker to execute HTML/javascript code via managed remote devices CLI commands by viewing the remote device CLI config installation log.

4.8CVSS5.1AI score0.0024EPSS

CVE•added 2018/06/27 8:29 p.m.•38 views

CVE-2018-1355

An open redirect vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions, FortiAnalyzer 6.0.0, 5.6.5 and below versions allows attacker to inject script code during converting a HTML table to a PDF document under the FortiView feature. An attacker may be able to social engineer an au...

6.1CVSS6AI score0.00249EPSS