Fortinet Inc Fortinet Fortiweb vulnerabilities
3 known vulnerabilities affecting fortinet_inc/fortinet_fortiweb.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2017-7736MEDIUMCVSS 5.4vFortiWeb 5.8.0, 5.7.1 and earlier2017-11-22
CVE-2017-7736 [MEDIUM] CWE-79 CVE-2017-7736: A stored Cross-site Scripting (XSS) vulnerability in Fortinet FortiWeb webUI Certificate View page i
A stored Cross-site Scripting (XSS) vulnerability in Fortinet FortiWeb webUI Certificate View page in 5.8.0, 5.7.1 and earlier, allows attackers to inject arbitrary web script or HTML via special crafted malicious certificate import.
cvelistv5nvd
CVE-2017-7737MEDIUMCVSS 4.9vFortiWeb 5.8.2 and below versions.2017-08-10
CVE-2017-7737 [MEDIUM] CWE-200 CVE-2017-7737: An information disclosure vulnerability in Fortinet FortiWeb 5.8.2 and below versions allows logged-
An information disclosure vulnerability in Fortinet FortiWeb 5.8.2 and below versions allows logged-in admin user to view SNMPv3 user password in cleartext in webui via the HTML source code.
cvelistv5nvd
CVE-2017-3129MEDIUMCVSS 6.1vFortiWeb versions 5.7.1 and below2017-05-27
CVE-2017-3129 [MEDIUM] CWE-79 CVE-2017-3129: A Cross-Site Scripting vulnerability in Fortinet FortiWeb versions 5.7.1 and below allows attacker t
A Cross-Site Scripting vulnerability in Fortinet FortiWeb versions 5.7.1 and below allows attacker to execute unauthorized code or commands via an improperly sanitized POST parameter in the FortiWeb Site Publisher feature.
cvelistv5nvd