Medium severity6.1NVD Advisory· Published May 27, 2017· Updated Jun 17, 2026
CVE-2017-3126
CVE-2017-3126
Description
An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4.0 through 5.4.2 allows attacker to execute unauthorized code or commands via the next parameter.
Affected products
7cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.0:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortianalyzer_firmware:5.4.2:*:*:*:*:*:*:*
cpe:2.3:o:fortinet:fortimanager_firmware:5.4.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:fortinet:fortimanager_firmware:5.4.0:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortimanager_firmware:5.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortimanager_firmware:5.4.2:*:*:*:*:*:*:*
- Fortinet, Inc./Fortinet FortiAnalyzer, FortiManagerv5Range: FortiAnalyzer 5.4.2, 5.4.1, 5.4.0
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/98557nvdThird Party AdvisoryVDB Entry
- fortiguard.com/psirt/FG-IR-17-014nvdVendor Advisory
- www.securitytracker.com/id/1038539nvd
- www.securitytracker.com/id/1038540nvd
News mentions
0No linked articles in our index yet.