admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2017/17xxx/CVE-2017-17541.json
CVE Team d10cabc8fb
- Synchronized data.
2018-07-17 06:03:19 -04:00

73 lines
2.2 KiB
JSON
Raw Blame History

{
"CVE_data_meta" : {
"ASSIGNER" : "psirt@fortinet.com",
"ID" : "CVE-2017-17541",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Fortinet FortiManager, FortiAnalyzer",
"version" : {
"version_data" : [
{
"version_value" : "FortiManager 6.0.0, 5.6.4 and below versions; FortiAnalyzer 6.0.0, 5.6.4 and below versions"
}
]
}
}
]
},
"vendor_name" : "Fortinet"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.4 and below versions, FortiAnalyzer 6.0.0, 5.6.4 and below versions allows inject Javascript code and HTML tags through the CN value of CA and CRL certificates via the import CA and CRL certificates feature."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Execute unauthorized code or commands"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://fortiguard.com/advisory/FG-IR-17-305",
"refsource" : "CONFIRM",
"url" : "https://fortiguard.com/advisory/FG-IR-17-305"
},
{
"name" : "1041246",
"refsource" : "SECTRACK",
"url" : "http://www.securitytracker.com/id/1041246"
},
{
"name" : "1041247",
"refsource" : "SECTRACK",
"url" : "http://www.securitytracker.com/id/1041247"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink