VYPR
Unrated severityNVD Advisory· Published Aug 4, 2021· Updated Oct 25, 2024

CVE-2021-24014

CVE-2021-24014

Description

Multiple instances of improper neutralization of input during web page generation vulnerabilities in FortiSandbox before 4.0.0 may allow an unauthenticated attacker to perform an XSS attack via specifically crafted request parameters.

Affected products

2
  • Fortinet/Fortisandboxllm-fuzzy2 versions
    <4.0.0+ 1 more
    • (no CPE)range: <4.0.0
    • (no CPE)range: FortiSandbox before 4.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.