CVE-2017-7734

CVE-2017-7734

EPSS 0.8%

A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 allows attackers to execute unauthorized code or commands via 'Comments' while saving Config Revisions.

Affected products

Fortinet, Inc. · Fortinet FortiOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://fortiguard.com/advisory/FG-IR-17-127 http://www.securityfocus.com/bid/99098 http://www.securitytracker.com/id/1038705