Vulnerabilities > CVE-2024-23111 - Unspecified vulnerability in Fortinet Fortios and Fortiproxy

CVSS 4.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

fortinet

NVD

Published: 2024-06-11

Updated: 2024-11-21

Summary

An improper neutralization of input during web page Generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiOS version 7.4.3 and below, 7.2 all versions, 7.0 all versions and FortiProxy version 7.4.2 and below, 7.2 all versions, 7.0 all versions reboot page may allow a remote privileged attacker with super-admin access to execute JavaScript code via crafted HTTP GET requests.

Vulnerable Configurations

Part	Description	Count
OS	Fortinet Fortinet Fortios 7.0.0 Fortinet Fortios 7.0.1 Fortinet Fortios 7.0.2 Fortinet Fortios 7.0.3 Fortinet Fortios 7.0.4 Fortinet Fortios 7.0.5 Fortinet Fortios 7.0.6 Fortinet Fortios 7.0.7 Fortinet Fortios 7.0.8 Fortinet Fortios 7.0.9 Fortinet Fortios 7.0.10 Fortinet Fortios 7.0.11 Fortinet Fortios 7.0.12 Fortinet Fortios 7.0.13 Fortinet Fortios 7.2.0 Fortinet Fortios 7.2.1 Fortinet Fortios 7.2.2 Fortinet Fortios 7.2.3 Fortinet Fortios 7.2.4 Fortinet Fortios 7.2.5 Fortinet Fortios 7.2.6 Fortinet Fortios 7.2.7 Fortinet Fortios 7.4.0 Fortinet Fortios 7.4.1 Fortinet Fortios 7.4.2 Fortinet Fortios 7.4.3	26
Application	Fortinet Fortinet Fortiproxy 7.4.0 Fortinet Fortiproxy 7.4.1 Fortinet Fortiproxy 7.2.0 Fortinet Fortiproxy 7.2.1 Fortinet Fortiproxy 7.2.2 Fortinet Fortiproxy 7.2.3 Fortinet Fortiproxy 7.2.4 Fortinet Fortiproxy 7.2.5 Fortinet Fortiproxy 7.2.8 Fortinet Fortiproxy 7.0.0 Fortinet Fortiproxy 7.0.1 Fortinet Fortiproxy 7.0.2 Fortinet Fortiproxy 7.0.3 Fortinet Fortiproxy 7.0.4 Fortinet Fortiproxy 7.0.5 Fortinet Fortiproxy 7.0.6 Fortinet Fortiproxy 7.0.7 Fortinet Fortiproxy 7.0.8 Fortinet Fortiproxy 7.0.9 Fortinet Fortiproxy 7.0.10 Fortinet Fortiproxy 7.0.11 Fortinet Fortiproxy 7.0.14	22

Summary

Vulnerable Configurations

References