Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Fortimanager_firmware
(Fortinet)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 15 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2015-05-12 | CVE-2015-3620 | Cross-site scripting (XSS) vulnerability in the advanced dataset reports page in Fortinet FortiAnalyzer 5.0.0 through 5.0.10 and 5.2.0 through 5.2.1 and FortiManager 5.0.3 through 5.0.10 and 5.2.0 through 5.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | Fortianalyzer_firmware, Fortimanager_firmware | N/A | ||
| 2017-08-22 | CVE-2015-3617 | Fortinet FortiManager 5.0 before 5.0.11 and 5.2 before 5.2.2 allow local users to gain privileges via crafted CLI commands. | Fortimanager_firmware | 7.8 | ||
| 2017-08-11 | CVE-2015-3616 | SQL injection vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to execute arbitrary commands via unspecified parameters. | Fortimanager_firmware | 9.8 | ||
| 2017-08-11 | CVE-2015-3615 | Cross-site scripting (XSS) vulnerability in Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote authenticated users to inject arbitrary web script or HTML via vectors involving unspecified parameters and a privilege escalation attack. | Fortimanager_firmware | 5.4 | ||
| 2017-08-11 | CVE-2015-3614 | Fortinet FortiManager 5.0.x before 5.0.11, 5.2.x before 5.2.2 allows remote attackers to obtain arbitrary files via vectors involving another unspecified vulnerability. | Fortimanager_firmware | 7.5 |