Published: 12/05/2015 Updated: 03/01/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.2.x prior to 5.2.3 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors to the (1) user group or (2) vpn template menus.

Affected Products

Vendor Product Versions
FortinetFortios5.2.0, 5.2.1, 5.2.2