Medium severity6.1NVD Advisory· Published May 27, 2017· Updated May 13, 2026
CVE-2017-3126
CVE-2017-3126
Description
An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4.0 through 5.4.2 allows attacker to execute unauthorized code or commands via the next parameter.
Affected products
7cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.0:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.2:*:*:*:*:*:*:*
cpe:2.3:o:fortinet:fortimanager_firmware:5.4.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fortinet:fortimanager_firmware:5.4.0:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortimanager_firmware:5.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortimanager_firmware:5.4.2:*:*:*:*:*:*:*
- Fortinet, Inc./Fortinet FortiAnalyzer, FortiManagerv5Range: FortiAnalyzer 5.4.2, 5.4.1, 5.4.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.securityfocus.com/bid/98557nvdThird Party AdvisoryVDB Entry
- fortiguard.com/psirt/FG-IR-17-014nvdVendor Advisory
- www.securitytracker.com/id/1038539nvd
- www.securitytracker.com/id/1038540nvd
News mentions
0No linked articles in our index yet.