CVE-2024-23111

Publication date

2024-06-11 14:32:00

Family

fortinet

State

PUBLISHED

Description

An improper neutralization of input during web page Generation (Cross-site Scripting) vulnerability [CWE-79] in FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all versions reboot page may allow a remote privileged attacker with super-admin access to execute JavaScript code via crafted HTTP GET requests.