Lucene search
HistoryMay 12, 2015 - 7:59 p.m.
CVE-2014-8616
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.003
Percentile
65.5%
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.2.x before 5.2.3 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to the (1) user group or (2) vpn template menus.
Affected configurations
Node
fortinetfortiosMatch5.2.0
ORfortinetfortiosMatch5.2.1
ORfortinetfortiosMatch5.2.2
Related
cve
cve
CVE-2014-8616
2015-05-12 19:59:00
prion
prion
Cross site scripting
2015-05-12 19:59:00
cvelist
cvelist
CVE-2014-8616
2015-05-12 19:00:00
nessus
nessus
Fortinet FortiOS 5.2.x < 5.2.3 Multiple XSS
2016-02-18 00:00:00
openvas
openvas
Fortinet FortiGate Reflected XSS Vulnerability (FG-IR-15-005)
2015-06-16 00:00:00
fortinet
fortinet
Multiple products cross-site scripting vulnerabilities
2015-02-25 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.003
Percentile
65.5%
Related for NVD:CVE-2014-8616