NotCVE - vendor:"Fortinet" product:"Fortisandbox" version:" >= 4.4.0 <= 4.4.1"

Page 3 of 23 results (0.003 seconds)

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2023-41680

https://notcve.org/view.php?id=CVE-2023-41680

13 Oct 2023 — A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSandbox version 4.4.1 and 4.4.0 and 4.2.0 through 4.2.5 and 4.0.0 through 4.0.3 and 3.2.0 through 3.2.4 and 3.1.0 through 3.1.5 and 3.0.0 through 3.0.7 and 2.5.0 through 2.5.2 and 2.4.1 allows attacker to execute unauthorized code or commands via crafted HTTP requests. Una neutralización inadecuada de la entrada durante la generación de la página web ("cross-site scripting") en Fortinet FortiSandbox versi... • https://fortiguard.com/psirt/FG-IR-23-311 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2023-41681

https://notcve.org/view.php?id=CVE-2023-41681

CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0

CVE-2023-41682

https://notcve.org/view.php?id=CVE-2023-41682

13 Oct 2023 — A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiSandbox version 4.4.0 and 4.2.0 through 4.2.5 and 4.0.0 through 4.0.3 and 3.2.0 through 3.2.4 and 2.5.0 through 2.5.2 and 2.4.1 and 2.4.0 allows attacker to denial of service via crafted http requests. Una limitación inadecuada de un nombre de ruta a un directorio restringido ("path traversal") en Fortinet FortiSandbox versión 4.4.0 y 4.2.0 a 4.2.5 y 4.0.0 a 4.0.3 y 3.2.0 a 3.2.4 y 2.5. 0 a 2.5.2 y 2.4.1 y 2.4.... • https://fortiguard.com/psirt/FG-IR-23-280 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

1 2 3