CVE-2015-3617

Опубликовано: 22 авг. 2017

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

Fortinet FortiManager 5.0 before 5.0.11 and 5.2 before 5.2.2 allow local users to gain privileges via crafted CLI commands.

Ссылки

http://www.securityfocus.com/bid/74444
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032188
Third Party Advisory
VDB Entry
https://fortiguard.com/psirt/FG-IR-15-011
Vendor Advisory
http://www.securityfocus.com/bid/74444
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032188
Third Party Advisory
VDB Entry
https://fortiguard.com/psirt/FG-IR-15-011
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.0:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.1:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.2:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.3:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.4:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.5:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.6:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.7:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.8:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.9:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.0.10:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.2.0:*:*:*:*:*:*:*

cpe:2.3:o:fortinet:fortimanager_firmware:5.2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.0016

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-q536-8j99-qw25