The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of FortiManager Virtual Appliance

computer vulnerability announce CVE-2018-1353

FortiManager: information disclosure via Vdoms Settings

Synthesis of the vulnerability

An attacker can bypass access restrictions to data via Vdoms Settings of FortiManager, in order to obtain sensitive information.
Impacted products: FortiManager, FortiManager Virtual Appliance.
Severity: 2/4.
Consequences: data reading.
Provenance: user account.
Creation date: 28/08/2018.
Identifiers: CERTFR-2018-AVI-411, CVE-2018-1353, FG-IR-18-016, VIGILANCE-VUL-27097.

Description of the vulnerability

An attacker can bypass access restrictions to data via Vdoms Settings of FortiManager, in order to obtain sensitive information.
Full Vigil@nce bulletin... (Free trial)

vulnerability bulletin CVE-2017-17541

FortiAnalyzer, FortiManager: Cross Site Scripting via CA And CRL Certificate View Page

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via CA And CRL Certificate View Page of FortiAnalyzer/FortiManager, in order to run JavaScript code in the context of the web site.
Impacted products: FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiManager, FortiManager Virtual Appliance.
Severity: 2/4.
Consequences: client access/rights.
Provenance: document.
Creation date: 06/07/2018.
Identifiers: CERTFR-2018-AVI-326, CVE-2017-17541, FG-IR-17-305, VIGILANCE-VUL-26643.

Description of the vulnerability

The FortiAnalyzer/FortiManager product offers a web service.

However, it does not filter received data via CA And CRL Certificate View Page before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via CA And CRL Certificate View Page of FortiAnalyzer/FortiManager, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2018-1355

FortiAnalyzer, FortiManager: open redirect via PDF File

Synthesis of the vulnerability

An attacker can deceive the user via PDF File of FortiAnalyzer/FortiManager, in order to redirect him to a malicious site.
Impacted products: FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiManager, FortiManager Virtual Appliance.
Severity: 1/4.
Consequences: user access/rights, data reading.
Provenance: internet client.
Creation date: 25/06/2018.
Identifiers: CERTFR-2018-AVI-303, CVE-2018-1355, FG-IR-18-022, VIGILANCE-VUL-26527.

Description of the vulnerability

An attacker can deceive the user via PDF File of FortiAnalyzer/FortiManager, in order to redirect him to a malicious site.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability alert CVE-2018-1354

FortiAnalyzer, FortiManager: Cross Site Scripting via Avatar Picture

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via Avatar Picture of FortiAnalyzer/FortiManager, in order to run JavaScript code in the context of the web site.
Impacted products: FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiManager, FortiManager Virtual Appliance.
Severity: 2/4.
Consequences: client access/rights.
Provenance: document.
Creation date: 25/06/2018.
Identifiers: CERTFR-2018-AVI-303, CVE-2018-1354, FG-IR-18-014, VIGILANCE-VUL-26526.

Description of the vulnerability

An attacker can trigger a Cross Site Scripting via Avatar Picture of FortiAnalyzer/FortiManager, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability CVE-2018-1351

FortiManager: Cross Site Scripting

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting of FortiManager, in order to run JavaScript code in the context of the web site.
Impacted products: FortiManager, FortiManager Virtual Appliance.
Severity: 2/4.
Consequences: client access/rights.
Provenance: document.
Creation date: 25/06/2018.
Identifiers: CERTFR-2018-AVI-303, CVE-2018-1351, FG-IR-18-006, VIGILANCE-VUL-26525.

Description of the vulnerability

The FortiManager product offers a web service.

However, it does not filter received data before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting of FortiManager, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

vulnerability bulletin CVE-2017-3126

FortiAnalyzer, FortiManager: open redirect

Synthesis of the vulnerability

An attacker can deceive the user of FortiAnalyzer / FortiManager, in order to redirect him to a malicious site.
Impacted products: FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiManager, FortiManager Virtual Appliance.
Severity: 1/4.
Consequences: user access/rights, data reading.
Provenance: internet client.
Creation date: 19/05/2017.
Identifiers: CVE-2017-3126, FG-IR-17-014, VIGILANCE-VUL-22773.

Description of the vulnerability

The FortiAnalyzer / FortiManager product offers a web service.

However, the web service accepts to redirect the victim with no warning, to an external site indicated by the attacker.

An attacker can therefore deceive the user of FortiAnalyzer / FortiManager, in order to redirect him to a malicious site.
Full Vigil@nce bulletin... (Free trial)

vulnerability CVE-2015-7363

FortiAnalyzer, FortiManager: Cross Site Scripting via Report Filters

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting via Report Filters of FortiAnalyzer or FortiManager, in order to run JavaScript code in the context of the web site.
Impacted products: FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiManager, FortiManager Virtual Appliance.
Severity: 2/4.
Consequences: client access/rights.
Provenance: document.
Creation date: 06/10/2016.
Identifiers: CVE-2015-7363, VIGILANCE-VUL-20790.

Description of the vulnerability

The FortiAnalyzer and FortiManager products offers a web service.

However, it does not filter received data before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting via Report Filters of FortiAnalyzer or FortiManager, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

vulnerability note CVE-2016-3193 CVE-2016-3194 CVE-2016-3195

Fortinet FortiManager / FortiAnalyzer: four vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of Fortinet FortiManager / FortiAnalyzer.
Impacted products: FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiManager, FortiManager Virtual Appliance.
Severity: 2/4.
Consequences: client access/rights.
Provenance: document.
Number of vulnerabilities in this bulletin: 4.
Creation date: 16/06/2016.
Revision date: 04/08/2016.
Identifiers: 1624459, 1624561, CVE-2016-3193, CVE-2016-3194, CVE-2016-3195, CVE-2016-3196, VIGILANCE-VUL-19914.

Description of the vulnerability

Several vulnerabilities were announced in Fortinet FortiManager / FortiAnalyzer.

An attacker can trigger a Cross Site Scripting via Add Tags, in order to run JavaScript code in the context of the web site. [severity:2/4; 1624459]

An attacker can trigger a Cross Site Scripting via Predefined Bookmarks, in order to run JavaScript code in the context of the web site. [severity:2/4]

An attacker can trigger a Cross Site Scripting via tabview.htm, in order to run JavaScript code in the context of the web site. [severity:2/4]

An attacker can trigger a Cross Site Scripting via filename, in order to run JavaScript code in the context of the web site. [severity:2/4; 1624561]
Full Vigil@nce bulletin... (Free trial)

vulnerability alert 19291

Fortinet FortiManager, FortiAnalyzer: Cross Site Scripting of /report/graphic/upload/

Synthesis of the vulnerability

An attacker can trigger a Cross Site Scripting of Fortinet FortiManager/FortiAnalyzer, in order to run JavaScript code in the context of the web site.
Impacted products: FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiManager, FortiManager Virtual Appliance.
Severity: 2/4.
Consequences: client access/rights.
Provenance: document.
Creation date: 04/04/2016.
Identifiers: VIGILANCE-VUL-19291.

Description of the vulnerability

The Fortinet FortiManager/FortiAnalyzer product offers a web service.

However, it does not filter received data from the /report/graphic/upload/ page before inserting them in generated HTML documents.

An attacker can therefore trigger a Cross Site Scripting of Fortinet FortiManager/FortiAnalyzer, in order to run JavaScript code in the context of the web site.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2015-3196

OpenSSL: use after free via PSK Identify Hint

Synthesis of the vulnerability

An attacker can force the usage of a freed memory area via PSK Identify Hint of an OpenSSL multi-threaded client, in order to trigger a denial of service, and possibly to run code.
Impacted products: FabricOS, Brocade Network Advisor, Brocade vTM, Cisco ASR, Cisco ATA, Cisco AnyConnect Secure Mobility Client, ASA, AsyncOS, Cisco Content SMA, Cisco ESA, Nexus by Cisco, NX-OS, Cisco Prime Access Registrar, Prime Collaboration Assurance, Cisco Prime DCNM, Prime Infrastructure, Cisco PRSM, Secure ACS, Cisco CUCM, Cisco MeetingPlace, Cisco WSA, Cisco Wireless Controller, Debian, BIG-IP Hardware, TMOS, Fedora, FortiAnalyzer, FortiAnalyzer Virtual Appliance, FortiClient, FortiGate, FortiGate Virtual Appliance, FortiManager, FortiManager Virtual Appliance, FortiOS, FreeBSD, HP Switch, AIX, IRAD, QRadar SIEM, Tivoli Storage Manager, Tivoli Workload Scheduler, IVE OS, Juniper J-Series, Junos OS, Junos Space, MAG Series by Juniper, NSM Central Manager, NSMXpress, Juniper SA, Juniper SBR, McAfee Email Gateway, Data ONTAP, NetScreen Firewall, ScreenOS, OpenSSL, openSUSE, openSUSE Leap, Oracle Communications, Solaris, pfSense, Pulse Connect Secure, MAG Series by Pulse Secure, Pulse Secure SBR, Puppet, RHEL, Slackware, Synology DS***, Synology RS***, Ubuntu.
Severity: 2/4.
Consequences: user access/rights, denial of service on service, denial of service on client.
Provenance: internet server.
Creation date: 03/12/2015.
Identifiers: 1972951, 1976113, 1976148, 1981612, 2003480, 2003620, 2003673, 9010051, BSA-2016-006, bulletinjan2016, c05398322, CERTFR-2015-AVI-517, cisco-sa-20151204-openssl, cpuoct2017, CVE-2015-3196, DSA-3413-1, FEDORA-2015-d87d60b9a9, FreeBSD-SA-15:26.openssl, HPESBHF03709, JSA10759, NTAP-20151207-0001, openSUSE-SU-2015:2288-1, openSUSE-SU-2015:2289-1, RHSA-2015:2617-01, SA40100, SB10203, SOL12824341, SOL30714460, SOL55540723, SOL86772626, SSA:2015-349-04, USN-2830-1, VIGILANCE-VUL-18437.

Description of the vulnerability

The OpenSSL library can be used by a multi-threaded client.

However, in this case, the SSL_CTX structure does not contain an updated PSK Identify Hint. OpenSSL can thus free twice the same memory area.

An attacker can therefore force the usage of a freed memory area via PSK Identify Hint of an OpenSSL multi-threaded client, in order to trigger a denial of service, and possibly to run code.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about FortiManager Virtual Appliance: