CVE-2017-3128

CVE-2017-3128

EPSS 0.7%

A stored XSS (Cross-Site-Scripting) vulnerability in Fortinet FortiOS allows attackers to execute unauthorized code or commands via the policy global-label parameter.

Affected products

Fortinet · Fortinet FortiOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://fortiguard.com/psirt/FG-IR-17-057 http://www.securityfocus.com/bid/98514 http://www.securitytracker.com/id/1038541