Fortinet Product Series Multiple Vulnerabilities

2016.08.24
Risk: Medium
Local: No
Remote: Yes
CWE: N/A

FortiGuard Fortinet - Security Bulletins: http://fortiguard.com/advisory/forticloud-cross-site-script-persistent-web-vulnerabilities http://fortiguard.com/advisory/fortivoice-5-0-filter-bypass-persistent-web-vulnerabilities http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-persistent-xss-vulnerability-1 http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-xss-vulnerability http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-client-side-xss-vulnerability http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-persistent-xss-vulnerability CVE-IDs: CVE-2016-3196 ; CVE-2016-3195 ; CVE-2016-3194 & CVE-2016-3193 Vulnerability Lab - Security Advisories: http://www.vulnerability-lab.com/get_content.php?id=1687 http://www.vulnerability-lab.com/get_content.php?id=1684 http://www.vulnerability-lab.com/get_content.php?id=1686 http://www.vulnerability-lab.com/get_content.php?id=1685 http://www.vulnerability-lab.com/get_content.php?id=1735 http://www.vulnerability-lab.com/get_content.php?id=1842 Reference Article: http://www.securityweek.com/vulnerabilities-found-several-fortinet-products http://magazine.vulnerability-db.com/?q=articles/2016/08/08/fortinet-patches-series-remote-vulnerabilities-appliance-products Comments: Thanks to the fortinet psirt security department in the usa for coordinating the disclosure process!

References:

http://www.vulnerability-lab.com/get_content.php?id=1687
http://www.vulnerability-lab.com/get_content.php?id=1684
http://www.vulnerability-lab.com/get_content.php?id=1686
http://www.vulnerability-lab.com/get_content.php?id=1685
http://www.vulnerability-lab.com/get_content.php?id=1735
http://www.vulnerability-lab.com/get_content.php?id=1842
http://fortiguard.com/advisory/forticloud-cross-site-script-persistent-web-vulnerabilities
http://fortiguard.com/advisory/fortivoice-5-0-filter-bypass-persistent-web-vulnerabilities
http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-persistent-xss-vulnerability-1
http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-xss-vulnerability
http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-client-side-xss-vulnerability
http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-persistent-xss-vulnerability


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2022, cxsecurity.com

 

Back to Top