CVE-2024-26006 | Fortinet FortiOS/FortiProxy SSL-VPN cross site scripting (FG-IR-23-485)

Inserito da Angelo Barbosa | Lug 9, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Fortinet FortiOS and FortiProxy. Affected is an unknown function of the component SSL-VPN. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-26006. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-26006 | Fortinet FortiOS/FortiProxy SSL-VPN cross site scripting (FG-IR-23-485)

Post correlati

CVE-2024-21170 | Oracle MySQL Server up to 8.4.0 Connector Python denial of service

CVE-2024-32803 | 2day.sk SuperFaktura WooCommerce Plugin up to 1.40.3 on WordPress server-side request forgery

CVE-2024-23722 | Fluent Bit up to 2.2.1 Form Content-Type null pointer dereference

CVE-2024-32801 | ShapedPlugin Widget Post Slider Plugin up to 1.3.5 on WordPress cross site scripting