Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27560 of 28075

CVE-2017-7338

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

A password management vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows an attacker to carry out information disclosure via the FortiAnalyzer Management View.

CVE-2017-3134

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

An escalation of privilege vulnerability in Fortinet FortiWLC-SD versions 8.2.4 and below allows attacker to gain root access via the CLI command ‘copy running-config’.

CVE-2017-7339

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

A Cross-Site Scripting vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows an attacker to execute unauthorized code or commands via the ‘Name’ and ‘Description’ inputs in the ‘Add...

CVE-2017-7731

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

A weak password recovery vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows attacker to carry out information disclosure via the Forgotten Password feature.

CVE-2017-7343

Posted by Cyberthreat Blog | May 26, 2017 | CVE Notifications |

An open redirect vulnerability in Fortinet FortiPortal 4.0.0 and below allows attacker to execute unauthorized code or commands via the url parameter.

Author: Cyberthreat Blog

CVE-2017-7338

CVE-2017-3134

CVE-2017-7339

CVE-2017-7731

CVE-2017-7343