← volver
CVE-2018-13380

CVE-2018-13380

CVSS 4.7 MEDIUMEPSS 62.5%
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.7, 5.4.0 to 5.4.12, 5.2 and below and Fortinet FortiProxy 2.0.0, 1.2.8 and below under SSL VPN web portal allows attacker to execute unauthorized malicious script code via the error or message handling parameters.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N
Productos afectados
Fortinet · Fortinet FortiOS and FortiProxy

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://fortiguard.com/advisory/FG-IR-18-383https://fortiguard.com/advisory/FG-IR-20-230