| IR Number | FG-IR-22-314 |
| Date | Nov 1, 2022 |
| Severity |
High |
| CVSSv3 Score | 7.5 |
| Impact | Execute unauthorized code or commands |
| CVE ID | CVE-2022-35851 |
| Affected Products |
FortiADC
:
7.1.0
|
| CVRF | Download |
Refine Search
PSIRT Advisories
FortiADC - Stored XSS vulnerability in external resource page
Summary
An improper neutralization of input during web page generation vulnerability [CWE-79] in FortiADC management interface may allow a remote and authenticated attacker to trigger a stored cross site scripting (XSS) attack via configuring a specially crafted IP Address.