Vulnerability Details : CVE-2017-17541
A Cross-site Scripting (XSS) vulnerability in Fortinet FortiManager 6.0.0, 5.6.4 and below versions, FortiAnalyzer 6.0.0, 5.6.4 and below versions allows inject Javascript code and HTML tags through the CN value of CA and CRL certificates via the import CA and CRL certificates feature.
Vulnerability category: Cross site scripting (XSS)
Products affected by CVE-2017-17541
- cpe:2.3:o:fortinet:fortianalyzer_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortianalyzer_firmware:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortimanager_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortimanager_firmware:6.0.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-17541
0.10%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 43 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-17541
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:N |
8.6
|
2.9
|
NIST | |
6.1
|
MEDIUM | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
2.8
|
2.7
|
NIST |
CWE ids for CVE-2017-17541
-
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-17541
-
http://www.securitytracker.com/id/1041246
Fortinet FortiAnalyzer Input Validation Flaw in CA and CRL Certificate View Page Lets Remote Users Conduct Cross-Site Scripting Attacks - SecurityTrackerThird Party Advisory;VDB Entry
-
http://www.securitytracker.com/id/1041247
Fortinet FortiManager Input Validation Flaw in CA and CRL Certificate View Page Lets Remote Users Conduct Cross-Site Scripting Attacks - SecurityTrackerThird Party Advisory;VDB Entry
-
https://fortiguard.com/advisory/FG-IR-17-305
Stored XSS under CA and CRL certificate view page | FortiGuardVendor Advisory
Jump to