VDB

CVE-2017-14186

CVE-2017-14186 PUBLISHED CVSS 5.400000095367432 MEDIUM

Une vulnérabilité a été découverte dans Fortinet FortiOS. Elle permet à un attaquant de provoquer une injection de code indirecte à distance (XSS).

EPSS 2.98% · 86.8th percentile

Risk Scores

CVSS 3.0
5.400000095367432
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS Score
2.98%
86.8th percentile

Affected Products

VendorProductVersions
fortinetfortios5.4.0, 5.2.0, 5.6.0
FortinetFortiOS
FortinetFortinet FortiOS, FortiProxyFortiOS 6.0.0 to 6.0.4, 5.6.3 to 5.6.7 and 5.4.6 to 5.4.12, FortiProxy 2.0.0, 1.2.0 to 1.2.8, 1.1.0 to 1.1.6, 1.0.0 to 1.0.7

Exploit Intelligence

…and 564 more exploits

Timeline

  • Nov 29, 2017 CVE Published
  • Dec 4, 2017 PoC Published
  • Aug 27, 2019 PoC Published
  • Aug 27, 2019 PoC Published
  • Feb 27, 2020 PoC Published
  • Jul 16, 2020 PoC Published
  • Oct 9, 2020 PoC Published
  • Oct 9, 2020 PoC Published
  • Oct 13, 2020 PoC Published
  • Oct 13, 2020 PoC Published
  • Oct 22, 2020 PoC Published
  • Oct 22, 2020 PoC Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›