VYPR
Medium severity6.1NVD Advisory· Published May 27, 2017· Updated Jun 17, 2026

CVE-2017-3126

CVE-2017-3126

Description

An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4.0 through 5.4.2 allows attacker to execute unauthorized code or commands via the next parameter.

Affected products

7
  • cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.1:*:*:*:*:*:*:*
    • cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.2:*:*:*:*:*:*:*
  • cpe:2.3:o:fortinet:fortimanager_firmware:5.4.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:fortinet:fortimanager_firmware:5.4.0:*:*:*:*:*:*:*
    • cpe:2.3:o:fortinet:fortimanager_firmware:5.4.1:*:*:*:*:*:*:*
    • cpe:2.3:o:fortinet:fortimanager_firmware:5.4.2:*:*:*:*:*:*:*
  • Fortinet, Inc./Fortinet FortiAnalyzer, FortiManagerv5
    Range: FortiAnalyzer 5.4.2, 5.4.1, 5.4.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.