VYPR
Unrated severityNVD Advisory· Published Aug 13, 2024· Updated Aug 13, 2024

CVE-2023-26211

CVE-2023-26211

Description

An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSOAR 7.3.0 through 7.3.2 allows an authenticated, remote attacker to inject arbitrary web script or HTML via the Communications module.

Affected products

2
  • Fortinet/Fortisoarllm-fuzzy2 versions
    >=7.3.0 <=7.3.2+ 1 more
    • (no CPE)range: >=7.3.0 <=7.3.2
    • (no CPE)range: 7.3.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.