Home

CVE-2017-3126

Description

An Open Redirect vulnerability in Fortinet FortiAnalyzer 5.4.0 through 5.4.2 and FortiManager 5.4.0 through 5.4.2 allows attacker to execute unauthorized code or commands via the next parameter.

Risk Information

Base Score
6.1
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.244

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2017-3126 are affected in fortianalyzer_firmware 5.4.2NCM
Vulnerabilities CVE-2017-3126 are affected in fortimanager_firmware 5.4.2NCM
URL Redirection to Untrusted Site (Open Redirect) Vulnerability (CVE-2017-3126)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234