Unrated severityNVD Advisory· Published Mar 15, 2020· Updated Oct 25, 2024
CVE-2019-17654
CVE-2019-17654
Description
An Insufficient Verification of Data Authenticity vulnerability in FortiManager 6.2.1, 6.2.0, 6.0.6 and below may allow an unauthenticated attacker to perform a Cross-Site WebSocket Hijacking (CSWSH) attack.
Affected products
2<=6.2.1,>=6.0.0+ 1 more
- (no CPE)range: <=6.2.1,>=6.0.0
- (no CPE)range: 6.2.1
Patches
Vulnerability mechanics
References
1- fortiguard.com/psirt/FG-IR-19-191mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.