CVE-2019-17654
published 2020-03-15CVE-2019-17654: An Insufficient Verification of Data Authenticity vulnerability in FortiManager 6.2.1, 6.2.0, 6.0.6 and below may allow an unauthenticated attacker to perform…
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
An Insufficient Verification of Data Authenticity vulnerability in FortiManager 6.2.1, 6.2.0, 6.0.6 and below may allow an unauthenticated attacker to perform a Cross-Site WebSocket Hijacking (CSWSH) attack.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortimanager | <= 6.0.6 | — |
| fortinet | fortimanager | — | — |
| fortinet | fortimanager | — | — |
| fortinet | fortimanager | — | — |
| fortinet | fortinet_fortimanager | — | — |
| fortinet | fortinet_fortimanager | — | — |
| fortinet | fortinet_fortimanager | — | — |