VYPR
Unrated severityNVD Advisory· Published Mar 15, 2020· Updated Oct 25, 2024

CVE-2019-17654

CVE-2019-17654

Description

An Insufficient Verification of Data Authenticity vulnerability in FortiManager 6.2.1, 6.2.0, 6.0.6 and below may allow an unauthenticated attacker to perform a Cross-Site WebSocket Hijacking (CSWSH) attack.

Affected products

2
  • Fortinet/Fortimanagerllm-fuzzy2 versions
    <=6.2.1,>=6.0.0+ 1 more
    • (no CPE)range: <=6.2.1,>=6.0.0
    • (no CPE)range: 6.2.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.