The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of FortiGate Virtual Appliance

vulnerability alert CVE-2017-7739

FortiOS: Cross Site Scripting via Web Proxy Disclaimer

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via Web Proxy Disclaimer of FortiOS, in order to run JavaScript code in the context of the web site.
Impacted products: FortiGate, FortiGate Virtual Appliance, FortiOS.
Severity: 2/4.
Creation date: 06/11/2017.
Identifiers: CERTFR-2017-AVI-392, CVE-2017-7739, FG-IR-17-168, VIGILANCE-VUL-24351.

Description of the vulnerability

The FortiOS product offers a web service.

However, it does not filter received data via Web Proxy Disclaimer before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via Web Proxy Disclaimer of FortiOS, in order to run JavaScript code in the context of the web site.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability bulletin CVE-2017-7733

FortiOS: Cross Site Scripting via Login Disclaimer

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via Login Disclaimer of FortiOS, in order to run JavaScript code in the context of the web site.
Impacted products: FortiGate, FortiGate Virtual Appliance, FortiOS.
Severity: 2/4.
Creation date: 25/10/2017.
Identifiers: CVE-2017-7733, FG-IR-17-113, VIGILANCE-VUL-24233.

Description of the vulnerability

The FortiOS product offers a web service.

However, it does not filter received data via Login Disclaimer before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via Login Disclaimer of FortiOS, in order to run JavaScript code in the context of the web site.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability announce 23482

FortiOS: security improvement via SMBv1 Support Disabled

Synthesis of the vulnerability

The security of FortiOS was improved via SMBv1 Support Disabled.
Impacted products: FortiGate, FortiGate Virtual Appliance, FortiOS.
Severity: 1/4.
Creation date: 09/08/2017.
Identifiers: CERTFR-2017-AVI-253, FG-IR-17-103, VIGILANCE-VUL-23482.

Description of the vulnerability

This bulletin is about a security improvement.

It does not describe a vulnerability.

The security of FortiOS was therefore improved via SMBv1 Support Disabled.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability announce CVE-2017-3131 CVE-2017-3132 CVE-2017-3133

FortiOS: Cross Site Scripting

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting of FortiOS, in order to run JavaScript code in the context of the web site.
Impacted products: FortiGate, FortiGate Virtual Appliance, FortiOS.
Severity: 2/4.
Creation date: 28/07/2017.
Identifiers: CERTFR-2017-AVI-240, CVE-2017-3131, CVE-2017-3132, CVE-2017-3133, FG-IR-17-104, VIGILANCE-VUL-23387.

Description of the vulnerability

The FortiOS product offers a web service.

However, it does not filter received data before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting of FortiOS, in order to run JavaScript code in the context of the web site.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability note CVE-2017-7734 CVE-2017-7735

Fortinet FortiOS: Cross Site Scripting via comments

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via comments in Fortinet FortiOS, in order to run JavaScript code in the context of the web site.
Impacted products: FortiGate, FortiGate Virtual Appliance, FortiOS.
Severity: 2/4.
Creation date: 15/06/2017.
Identifiers: CVE-2017-7734, CVE-2017-7735, FG-IR-16-047, FG-IR-16-048, FG-IR-17-127, VIGILANCE-VUL-22984.

Description of the vulnerability

The Fortinet FortiOS product offers a web service.

However, it does not filter received data for comments before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via comments in Fortinet FortiOS, in order to run JavaScript code in the context of the web site.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability bulletin CVE-2017-3128

FortiOS: Cross Site Scripting via Policy Global-label Parameter

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via Policy Global-label Parameter of FortiOS, in order to run JavaScript code in the context of the web site.
Impacted products: FortiGate, FortiGate Virtual Appliance, FortiOS.
Severity: 2/4.
Creation date: 18/05/2017.
Identifiers: CVE-2017-3128, FG-IR-17-057, VIGILANCE-VUL-22763.

Description of the vulnerability

The FortiOS product offers a web service.

However, it does not filter received data via Policy Global-label Parameter before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via Policy Global-label Parameter of FortiOS, in order to run JavaScript code in the context of the web site.
Complete Vigil@nce bulletin.... (Free trial)

vulnerability CVE-2017-3127

FortiOS: Cross Site Scripting via srcintf

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via srcintf of FortiOS, in order to run JavaScript code in the context of the web site.
Impacted products: FortiGate, FortiGate Virtual Appliance, FortiOS.
Severity: 2/4.
Creation date: 26/04/2017.
Identifiers: CVE-2017-3127, FG-IR-17-017, VIGILANCE-VUL-22570.

Description of the vulnerability

The FortiOS product offers a web service.

However, it does not filter received data via srcintf before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via srcintf of FortiOS, in order to run JavaScript code in the context of the web site.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability note CVE-2016-10166 CVE-2016-10167 CVE-2016-10168

libgd2: three vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of libgd2.
Impacted products: Debian, Fedora, FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiGate, FortiGate Virtual Appliance, FortiOS, openSUSE Leap, RHEL, Slackware, SUSE Linux Enterprise Desktop, SLES, Ubuntu.
Severity: 2/4.
Creation date: 30/01/2017.
Identifiers: CERTFR-2017-AVI-237, CVE-2016-10166, CVE-2016-10167, CVE-2016-10168, DLA-804-1, DSA-3777-1, FEDORA-2017-9a5b89363f, FEDORA-2017-f787c35494, FG-IR-17-051, openSUSE-SU-2017:0548-1, openSUSE-SU-2017:0588-1, RHSA-2017:3221-01, RHSA-2018:1296-01, SSA:2017-041-03, SSA:2018-120-01, SUSE-SU-2017:0534-1, SUSE-SU-2017:0556-1, SUSE-SU-2017:0568-1, USN-3213-1, VIGILANCE-VUL-21699.

Description of the vulnerability

Several vulnerabilities were announced in libgd2.

An attacker can generate an integer overflow, in order to trigger a denial of service, and possibly to run code. [severity:2/4; CVE-2016-10166]

An attacker can trigger a fatal error, in order to trigger a denial of service. [severity:2/4; CVE-2016-10167]

An attacker can generate an integer overflow via Chunks, in order to trigger a denial of service, and possibly to run code. [severity:2/4; CVE-2016-10168]
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability announce CVE-2016-7542

FortiOS: information disclosure via Admin Password Hash

Synthesis of the vulnerability

A local attacker can read the admin password hash of FortiOS, in order to perform a brute force.
Impacted products: FortiGate, FortiGate Virtual Appliance, FortiOS.
Severity: 2/4.
Creation date: 05/12/2016.
Identifiers: CVE-2016-7542, FG-IR-16-050, VIGILANCE-VUL-21267.

Description of the vulnerability

The FortiOS product stores the admin password hash.

However, a local attacker can bypass access restrictions to data, and read this hash.

A local attacker can therefore read the admin password hash of FortiOS, in order to perform a brute force.
Complete Vigil@nce bulletin.... (Free trial)

computer vulnerability bulletin 21138

ICMP: denial of service via ICMP Type 3 Code 3, BlackNurse

Synthesis of the vulnerability

An attacker can send numerous ICMP Type 3 Code 3 packets to some routers/firewalls, in order to trigger a denial of service.
Impacted products: ASA, IOS by Cisco, Cisco Router, FortiGate, FortiGate Virtual Appliance, FortiOS, Palo Alto Firewall PA***, PAN-OS.
Severity: 2/4.
Creation date: 16/11/2016.
Identifiers: Black Nurse, sk114500, VIGILANCE-VUL-21138.

Description of the vulnerability

The ICMP protocol uses packets of Type 3 Code 3 to announce that a port is unreachable. This packet is usually sent as a reply to the sender of a packet sent to a closed TCP/UDP port.

However, when numerous ICMP Type 3 Code 3 packets are received, some devices uselessly consume many resources to process them.

An attacker can therefore send numerous ICMP Type 3 Code 3 packets to some routers/firewalls, in order to trigger a denial of service.
Complete Vigil@nce bulletin.... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about FortiGate Virtual Appliance: