Security Advisory

CVE-2022-41330

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-11 16:05:38

Last updated 2024-10-23 14:30:33

Assigner fortinet

State PUBLISHED

Description

An improper neutralization of input during web page generation vulnerability (Cross-site Scripting) [CWE-79] in Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.9, version 6.4.0 through 6.4.11 and before 6.2.12 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an unauthenticated attacker to perform an XSS attack via crafted HTTP GET requests.

← Browse all CVEs View on cve.org ↗