exploitDog

CVE-2015-8038

Опубликовано: 02 нояб. 2015

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI) in Fortinet FortiManager before 5.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) sharedjobmanager or (2) SOMServiceObjDialog.

Ссылки

http://www.fortiguard.com/advisory/multiple-xss-vulnerabilities-in-fortimanager-gui
Vendor Advisory
http://www.fortiguard.com/advisory/multiple-xss-vulnerabilities-in-fortimanager-gui
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:fortinet:fortimanager_firmware:*:*:*:*:*:*:*:*

Версия до 5.2.3 (включая)

EPSS

Процентиль: 84%

0.02063

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-jc66-4969-7jc4

github

больше 3 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI) in Fortinet FortiManager before 5.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) sharedjobmanager or (2) SOMServiceObjDialog.

EPSS

Процентиль: 84%

0.02063

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79