Home
MEDIUM: 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:O/RC:CDefault status
unaffected
8.0.0
affected
7.6.0 (semver)
affected
7.4.0 (semver)
affected
7.2.0 (semver)
affected
Description
A improper neutralization of script-related html tags in a web page (basic xss) vulnerability in Fortinet FortiADC 8.0.0, FortiADC 7.6.0 through 7.6.3, FortiADC 7.4 all versions, FortiADC 7.2 all versions may allow attacker to execute unauthorized code or commands via crafted URL.
Problem types
Execute unauthorized code or commands
Product status
8.0.0
7.6.0 (semver)
7.4.0 (semver)
7.2.0 (semver)
References
fortiguard.fortinet.com/psirt/FG-IR-25-736
