CVE

Id
80897  
CVE No.
CVE-2015-3620  
Status
Candidate  
Description
Cross-site scripting (XSS) vulnerability in the advanced dataset reports page in Fortinet FortiAnalyzer 5.0.0 through 5.0.10 and 5.2.0 through 5.2.1 and FortiManager 5.0.3 through 5.0.10 and 5.2.0 through 5.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.  
Phase
Assigned (20150430)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
729752 80897 CVE-2015-3620 BUGTRAQ:20150505 Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability  View
729753 80897 CVE-2015-3620 URL:http://www.securityfocus.com/archive/1/archive/1/535452/100/0/threaded  View
729754 80897 CVE-2015-3620 FULLDISC:20150505 Fortinet FortiAnalyzer & FortiManager - Client Side Cross Site Scripting Vulnerability  View
729755 80897 CVE-2015-3620 URL:http://seclists.org/fulldisclosure/2015/May/13  View
729756 80897 CVE-2015-3620 MISC:http://packetstormsecurity.com/files/131766/Fortinet-FortiAnalyzer-FortiManager-Cross-Site-Scripting.html  View
729757 80897 CVE-2015-3620 CONFIRM:http://www.fortiguard.com/advisory/FG-IR-15-005/  View
729758 80897 CVE-2015-3620 BID:74646  View
729759 80897 CVE-2015-3620 URL:http://www.securityfocus.com/bid/74646  View
729760 80897 CVE-2015-3620 SECTRACK:1032262  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
8051 JVNDB-2015-003371 Apple OS X の Admin Framework における管理者権限を取得される脆弱性 Apple OS X の Admin Framework は、認証エラーを適切に処理しないため、管理者権限を取得される脆弱性が存在します。 CVE-2015-3672 80897 7.2 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-003371.html  View