Security Advisory

CVE-2021-32597

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-06 10:48:20

Last updated 2024-10-25 13:51:39

Assigner fortinet

State PUBLISHED

Description

Multiple improper neutralization of input during web page generation (CWE-79) in FortiManager and FortiAnalyzer versions 7.0.0, 6.4.5 and below, 6.2.7 and below user interface, may allow a remote authenticated attacker to perform a Stored Cross Site Scripting attack (XSS) by injecting malicious payload in GET parameters.

← Browse all CVEs View on cve.org ↗