Security Advisory

CVE-2018-1355

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-06-27 20:00:00

Last updated 2024-10-25 14:09:11

Assigner fortinet

State PUBLISHED

Description

An open redirect vulnerability in Fortinet FortiManager 6.0.0, 5.6.5 and below versions, FortiAnalyzer 6.0.0, 5.6.5 and below versions allows attacker to inject script code during converting a HTML table to a PDF document under the FortiView feature. An attacker may be able to social engineer an authenticated user into generating a PDF file containing injected malicious URLs.

← Browse all CVEs View on cve.org ↗