2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2021-26092" ,
"sourceIdentifier" : "psirt@fortinet.com" ,
"published" : "2022-02-24T03:15:43.407" ,
2024-12-08 03:06:42 +00:00
"lastModified" : "2024-11-21T05:55:51.277" ,
"vulnStatus" : "Modified" ,
2024-07-14 02:06:08 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 through 5.2.15, 5.4.0 through 5.4.13, 5.6.0 through 5.6.14, 6.0.0 through 6.0.12, 6.2.0 through 6.2.7, 6.4.0 through 6.4.4; and FortiProxy 1.2.0 through 1.2.9, 2.0.0 through 2.0.1 may allow a remote unauthenticated attacker to perform a reflected Cross-site Scripting (XSS) attack by sending a request to the error page with malicious GET parameters."
} ,
{
"lang" : "es" ,
"value" : "Un fallo en el saneo de la entrada en el portal web SSL VPN de FortiOS versiones 5.2.10 hasta 5.2.15, 5.4.0 hasta 5.4.13, 5.6.0 hasta 5.6.14, 6.0.0 hasta 6.0.12, 6.2.0 hasta 6.2.7, 6.4.0 hasta 6.4.4; y FortiProxy 1. 2.0 hasta 1.2.9, 2.0.0 hasta 2.0.1, pueden permitir a un atacante remoto no autenticado llevar a cabo un ataque de tipo Cross-site Scripting (XSS) reflejado mediante el env\u00edo una petici\u00f3n a la p\u00e1gina de error con par\u00e1metros GET maliciosos"
}
] ,
"metrics" : {
"cvssMetricV31" : [
{
2024-12-08 03:06:42 +00:00
"source" : "psirt@fortinet.com" ,
"type" : "Secondary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
2024-12-08 03:06:42 +00:00
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N" ,
"baseScore" : 4.7 ,
"baseSeverity" : "MEDIUM" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "NONE" ,
"userInteraction" : "REQUIRED" ,
"scope" : "CHANGED" ,
2024-12-08 03:06:42 +00:00
"confidentialityImpact" : "NONE" ,
2023-04-24 12:24:31 +02:00
"integrityImpact" : "LOW" ,
2024-12-08 03:06:42 +00:00
"availabilityImpact" : "NONE"
2023-04-24 12:24:31 +02:00
} ,
"exploitabilityScore" : 2.8 ,
2024-12-08 03:06:42 +00:00
"impactScore" : 1.4
2023-04-24 12:24:31 +02:00
} ,
{
2024-12-08 03:06:42 +00:00
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
2023-04-24 12:24:31 +02:00
"cvssData" : {
"version" : "3.1" ,
2024-12-08 03:06:42 +00:00
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N" ,
"baseScore" : 6.1 ,
"baseSeverity" : "MEDIUM" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "NONE" ,
"userInteraction" : "REQUIRED" ,
"scope" : "CHANGED" ,
2024-12-08 03:06:42 +00:00
"confidentialityImpact" : "LOW" ,
2023-04-24 12:24:31 +02:00
"integrityImpact" : "LOW" ,
2024-12-08 03:06:42 +00:00
"availabilityImpact" : "NONE"
2023-04-24 12:24:31 +02:00
} ,
"exploitabilityScore" : 2.8 ,
2024-12-08 03:06:42 +00:00
"impactScore" : 2.7
2023-04-24 12:24:31 +02:00
}
] ,
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:M/Au:N/C:N/I:P/A:N" ,
2024-12-08 03:06:42 +00:00
"baseScore" : 4.3 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "NETWORK" ,
"accessComplexity" : "MEDIUM" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "NONE" ,
"integrityImpact" : "PARTIAL" ,
2024-12-08 03:06:42 +00:00
"availabilityImpact" : "NONE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "MEDIUM" ,
"exploitabilityScore" : 8.6 ,
"impactScore" : 2.9 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : true
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-79"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "1.2.0" ,
"versionEndIncluding" : "1.2.9" ,
"matchCriteriaId" : "73F1E981-42BC-476D-B041-889BE6EF654F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:fortinet:fortiproxy:2.0.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F3DD97EA-92AD-4EB1-B731-261F40BFC4BB"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:fortinet:fortiproxy:2.0.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E986BB97-4883-4B26-9C67-681BB4D2EFA8"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.2.10" ,
"versionEndIncluding" : "5.2.15" ,
"matchCriteriaId" : "C0E45929-0FEB-4C95-9DBA-F927712FBF4F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.4.0" ,
"versionEndIncluding" : "5.4.13" ,
"matchCriteriaId" : "0507F264-9E8D-4F9D-AB18-0C6CA5BD69F0"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "5.6.0" ,
"versionEndIncluding" : "5.6.14" ,
"matchCriteriaId" : "AC0AFBC1-5C11-412E-9979-AF89DD26EFCD"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "6.0.0" ,
"versionEndIncluding" : "6.0.12" ,
"matchCriteriaId" : "B09D1C32-BF6B-4B27-91D4-1347EFB8ECB7"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "6.2.0" ,
"versionEndIncluding" : "6.2.7" ,
"matchCriteriaId" : "6EB24CA5-D2B3-4FEE-B03A-05A7A0F11964"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "6.4.0" ,
"versionEndIncluding" : "6.4.4" ,
"matchCriteriaId" : "5A29B9B0-C8AD-47FA-B18C-2898EBCB1295"
}
]
}
]
}
] ,
"references" : [
{
"url" : "https://fortiguard.com/psirt/FG-IR-20-199" ,
"source" : "psirt@fortinet.com" ,
"tags" : [
"Vendor Advisory"
]
2024-12-08 03:06:42 +00:00
} ,
{
"url" : "https://fortiguard.com/psirt/FG-IR-20-199" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
2023-04-24 12:24:31 +02:00
}
]
}
