FortiManager is prone to following security vulnerabilities:
1. A remote privilege-escalation vulnerability
2. An HTML-injection vulnerability
3. An SQL-injection vulnerability
4. A local privilege-escalation vulnerability
5. An arbitrary file-download vulnerability
Exploiting these issues could allow an attacker to execute attacker-supplied HTML or script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, gain elevated privileges, or download arbitrary files from the web server and obtain potentially sensitive information. This may aid in other attacks.
Information
CVE-2015-3612
CVE-2015-3613
CVE-2015-3614
CVE-2015-3615
CVE-2015-3616
CVE-2015-3617
Fortinet FortiManager 5.2
Fortinet FortiManager 5.0.10
Fortinet FortiManager 5.0.9
Fortinet FortiManager 5.0.8
Fortinet FortiManager 5.0.7
Fortinet FortiManager 5.0.6
Fortinet FortiManager 5.0.5
Fortinet FortiManager 5.0.4
Fortinet FortiManager 5.0.3
Fortinet FortiManager 5.0.2
Fortinet FortiManager 5.0.1
Fortinet FortiManager 5.0
Fortinet FortiManager 5.0.11
Exploit
Attackers can use a browser to exploit these issues.
References:
- FortiManager Homepage (Fortinet)
- Multiple Vulnerabilities in FortiManager (Fortinet)
- Multiple Vulnerabilities in FortiManager (Fortinet)