Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Fortianalyzer_firmware
(Fortinet)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 12 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2014-10-31 | CVE-2014-2334 | Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2014-2336. | Fortianalyzer_firmware | N/A | ||
| 2013-11-20 | CVE-2013-6826 | cgi-bin/module//sysmanager/admin/SYSAdminUserDialog in Fortinet FortiAnalyzer before 5.0.5 does not properly validate the csrf_token parameter, which allows remote attackers to perform cross-site request forgery (CSRF) attacks. | Fortianalyzer\-1000d, Fortianalyzer\-2000b, Fortianalyzer\-200d, Fortianalyzer\-3000d, Fortianalyzer\-300d, Fortianalyzer\-4000b, Fortianalyzer_firmware | N/A |