Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27558 of 28073

CVE-2017-3134

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

An escalation of privilege vulnerability in Fortinet FortiWLC-SD versions 8.2.4 and below allows attacker to gain root access via the CLI command ‘copy running-config’.

CVE-2017-7339

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

A Cross-Site Scripting vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows an attacker to execute unauthorized code or commands via the ‘Name’ and ‘Description’ inputs in the ‘Add...

CVE-2017-7731

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

A weak password recovery vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows attacker to carry out information disclosure via the Forgotten Password feature.

CVE-2017-7343

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

An open redirect vulnerability in Fortinet FortiPortal 4.0.0 and below allows attacker to execute unauthorized code or commands via the url parameter.

CVE-2017-9242

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel through 4.11.3 is too late in checking whether an overwrite of an skb data structure may occur, which allows local users to cause a denial of service...

Author: Cyberthreat Blog

CVE-2017-3134

CVE-2017-7339

CVE-2017-7731

CVE-2017-7343

CVE-2017-9242