Количество 3
Количество 3
CVE-2023-45587
An improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.2, FortiSandbox 4.2 all versions, FortiSandbox 4.0 all versions, FortiSandbox 3.2 all versions, FortiSandbox 3.1 all versions allows attacker to execute unauthorized code or commands via crafted HTTP requests
GHSA-5cq5-j392-m3p2
An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.1 and 4.4.0 and 4.2.0 through 4.2.5 and 4.0.0 through 4.0.3 and 3.2.0 through 3.2.4 and 3.1.0 through 3.1.5 allows attacker to execute unauthorized code or commands via crafted HTTP requests
BDU:2023-08819
Уязвимость графического интерфейса системы выявления и устранения угроз FortiSandbox, позволяющая нарушителю осуществить межсайтовые сценарные атаки
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-45587 An improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.2, FortiSandbox 4.2 all versions, FortiSandbox 4.0 all versions, FortiSandbox 3.2 all versions, FortiSandbox 3.1 all versions allows attacker to execute unauthorized code or commands via crafted HTTP requests | CVSS3: 3.5 | 0% Низкий | около 2 лет назад |
| GHSA-5cq5-j392-m3p2 An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.1 and 4.4.0 and 4.2.0 through 4.2.5 and 4.0.0 through 4.0.3 and 3.2.0 through 3.2.4 and 3.1.0 through 3.1.5 allows attacker to execute unauthorized code or commands via crafted HTTP requests | CVSS3: 3.5 | 0% Низкий | около 2 лет назад |
 | BDU:2023-08819 Уязвимость графического интерфейса системы выявления и устранения угроз FortiSandbox, позволяющая нарушителю осуществить межсайтовые сценарные атаки | CVSS3: 3.5 | 0% Низкий | около 2 лет назад |
Уязвимостей на страницу