Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.6 and below versions allows attacker to execute HTML/javascript code via managed remote devices CLI commands by viewing the remote device CLI config installation log.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Fortinet FortiManager 跨站脚本漏洞
Vulnerability Description
Fortinet FortiManager是美国飞塔(Fortinet)公司的一套集中化网络安全管理平台。该平台支持集中管理任意数量的Fortinet设备,并能够将设备分组到不同的管理域(ADOM)进一步简化多设备安全部署与管理。 Fortinet FortiManager 6.0.0及之前版本中存在跨站脚本漏洞,该漏洞源于程序没有过滤用户提交的输入。远程攻击者可借助被管理远程设备的CLI命令利用该漏洞执行HTML或JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A