Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistFortinetCVELIST:CVE-2017-14187
HistoryMay 24, 2018 - 8:00 p.m.

CVE-2017-14187

2018-05-2420:00:00
fortinet
www.cve.org
11

AI Score

7

Confidence

High

EPSS

0

Percentile

5.1%

JSON

A local privilege escalation and local code execution vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.8, and 5.2 and below versions allows attacker to execute unauthorized binary program contained on an USB drive plugged into a FortiGate via linking the aforementioned binary program to a command that is allowed to be run by the fnsysctl CLI command.

CNA Affected

[
  {
    "product": "FortiOS",
    "vendor": "Fortinet, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "5.6.0 to 5.6.2"
      },
      {
        "status": "affected",
        "version": "5.4.0 to 5.4.8"
      },
      {
        "status": "affected",
        "version": "5.2 and below versions"
      }
    ]
  }
]

Related

cve 1
nvd 1
prion 1
fortinet 1
nessus 1
cve
cve
CVE-2017-14187
2018-05-24 20:29:00
nvd
nvd
CVE-2017-14187
2018-05-24 20:29:00
prion
prion
Remote code execution
2018-05-24 20:29:00
fortinet
fortinet
FortiOS local privilege escalation via malicious use of USB storage devices
2018-05-18 00:00:00
nessus
nessus
Fortinet FortiGate <= 5.2.x / 5.4.x < 5.4.9 / 5.6.x < 5.6.3 Multiple Vulnerabilities (FG-IR-17-231, FG-IR-17-245 and FG-IR-17-172)
2018-06-08 00:00:00

AI Score

7

Confidence

High

EPSS

0

Percentile

5.1%

JSON
Related for CVELIST:CVE-2017-14187
cve1nvd1prion1fortinet1nessus1