Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0331

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2014-0331
Last Modified 24 Jul 2015 02:31:57
Published 10 Apr 2014 04:29:20
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-0331

Summary

Cross-site scripting (XSS) vulnerability in the web administration interface in FortiADC with firmware before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the locale parameter to gui_partA/.

Vulnerable Systems

Operating System

  • Fortinet Fortiadc Firmware 3.2.0


References

CONFIRM - http://www.fortiguard.com/advisory/FG-IR-14-004

FULLDISC - 20140403 XSS Reflected vulnerabilities in OS of FortiADC v3.2 (CVE-2014-0331)

SECTRACK - 1030018

BID - 66642


Last Updated: 27 May 2016 11:04:54