CVE-2014-2336 in FortiAnalyzerinformación

Resumen (Inglés)

Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 and FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-2334 and CVE-2014-2335.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservar

2014-03-12

Divulgación

2014-10-31

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
68104	Fortinet FortiAnalyzer/FortiManager Reflected secuencias de comandos en sitios cruzados	79	Alto	Arreglo oficial	CVE-2014-2336

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

MITRE
NVD
CVE Details

◂ AnteriorVisión De ConjuntoPróximo ▸

Interested in the pricing of exploits?

See the underground prices here!