At a glance:
| IR Number | FG-IR-14-003 |
| Date | Feb 03, 2014 |
| Risk | 
|
| Impact | Cross-site scripting |
| CVE ID | CVE-2013-7182 |
| CVRF | Download |
Refine Search
PSIRT Advisory
FortiGate Cross-Site Scripting Vulnerability
Description
FortiOS 5.0.5 and earlier versions contain a cross-site scripting vulnerability. The mkey parameter in the URL /firewall/schedule/recurrdlg is vulnerable to reflected cross-site scripting attack.
Impact
Cross-site scripting
Affected Products
FortiOS 5.0.5 and lower.
Solutions
Upgrade to FortiOS 5.0.6 or higher.
Acknowledgement
William Costa