FortiManager Multiple Security Vulnerabilities



FortiManager is prone to following security vulnerabilities:

1. A remote privilege-escalation vulnerability
2. An HTML-injection vulnerability
3. An SQL-injection vulnerability
4. A local privilege-escalation vulnerability
5. An arbitrary file-download vulnerability

Exploiting these issues could allow an attacker to execute attacker-supplied HTML or script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, gain elevated privileges, or download arbitrary files from the web server and obtain potentially sensitive information. This may aid in other attacks.

Information

Bugtraq ID: 74444
Class: Input Validation Error
CVE: CVE-2015-3611
CVE-2015-3612
CVE-2015-3613
CVE-2015-3614
CVE-2015-3615
CVE-2015-3616
CVE-2015-3617

Remote: Yes
Local: Yes
Published: Apr 16 2015 12:00AM
Updated: Aug 25 2017 07:11AM
Credit: Maksymilian Motyl and the ITN Security Team at Orange Polska
Vulnerable: Fortinet FortiManager 5.2.1
Fortinet FortiManager 5.2
Fortinet FortiManager 5.0.10
Fortinet FortiManager 5.0.9
Fortinet FortiManager 5.0.8
Fortinet FortiManager 5.0.7
Fortinet FortiManager 5.0.6
Fortinet FortiManager 5.0.5
Fortinet FortiManager 5.0.4
Fortinet FortiManager 5.0.3
Fortinet FortiManager 5.0.2
Fortinet FortiManager 5.0.1
Fortinet FortiManager 5.0


Not Vulnerable: Fortinet FortiManager 5.2.2
Fortinet FortiManager 5.0.11


Exploit


Attackers can use a browser to exploit these issues.


Related Posts

Comments