Vulnerabilities > Fortinet > Forticlient Enterprise Management Server > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2021-11-02	CVE-2020-15940	Cross-site Scripting vulnerability in Fortinet Forticlient Enterprise Management Server An improper neutralization of input vulnerability [CWE-79] in FortiClientEMS versions 6.4.1 and below and 6.2.9 and below may allow a remote authenticated attacker to inject malicious script/tags via the name parameter of various sections of the server. network fortinet CWE-79	3.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.