Medium severity5.4NVD Advisory· Published Sep 12, 2017· Updated May 13, 2026
CVE-2017-3131
CVE-2017-3131
Description
A Cross-Site Scripting vulnerability in Fortinet FortiOS versions 5.4.0 through 5.4.4 and 5.6.0 allows attackers to execute unauthorized code or commands via the filter input in "Applications" under FortiView.
Affected products
7cpe:2.3:o:fortinet:fortios:5.4.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:o:fortinet:fortios:5.4.0:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:5.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:5.4.2:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:5.4.3:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:5.4.4:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:5.6.0:*:*:*:*:*:*:*
- Fortinet, Inc./Fortinet FortiOSv5Range: FortiOS versions 5.4.0 through 5.4.4 and 5.6.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.securityfocus.com/bid/100009nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039020nvdThird Party AdvisoryVDB Entry
- fortiguard.com/advisory/FG-IR-17-104nvdMitigationVendor Advisory
- www.exploit-db.com/exploits/42388/nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.