CVE-2016-3196

EUVD-2016-4237
Cross-site scripting (XSS) vulnerability in Fortinet FortiAnalyzer 5.x before 5.0.12 and 5.2.x before 5.2.6 and FortiManager 5.x before 5.0.12 and 5.2.x before 5.2.6 allows remote authenticated users to inject arbitrary web script or HTML via the filename of an image uploaded in the report section.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
Affected Products (NVD)
VendorProductVersion
fortinetfortimanager_firmware
5.0.3
fortinetfortimanager_firmware
5.0.4
fortinetfortimanager_firmware
5.0.5
fortinetfortimanager_firmware
5.0.6
fortinetfortimanager_firmware
5.0.7
fortinetfortimanager_firmware
5.0.8
fortinetfortimanager_firmware
5.0.9
fortinetfortimanager_firmware
5.0.10
fortinetfortimanager_firmware
5.2.0
fortinetfortimanager_firmware
5.2.1
fortinetfortimanager_firmware
5.2.2
fortinetfortimanager_firmware
5.2.3
fortinetfortimanager_firmware
5.2.4
fortinetfortimanager_firmware
5.2.5
fortinetfortianalyzer_firmware
5.0.0
fortinetfortianalyzer_firmware
5.0.1
fortinetfortianalyzer_firmware
5.0.4
fortinetfortianalyzer_firmware
5.0.5
fortinetfortianalyzer_firmware
5.0.10
fortinetfortianalyzer_firmware
5.2.0
fortinetfortianalyzer_firmware
5.2.1
fortinetfortianalyzer_firmware
5.2.2
fortinetfortianalyzer_firmware
5.2.3
fortinetfortianalyzer_firmware
5.2.4
fortinetfortianalyzer_firmware
5.2.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-persistent-xss-vulnerability
http://seclists.org/fulldisclosure/2016/Aug/4
http://www.securityfocus.com/archive/1/539069/100/0/threaded
http://www.securityfocus.com/bid/92203
http://www.securitytracker.com/id/1036550
http://www.securitytracker.com/id/1036551
http://www.vulnerability-lab.com/get_content.php?id=1687
http://fortiguard.com/advisory/fortimanager-and-fortianalyzer-persistent-xss-vulnerability
http://seclists.org/fulldisclosure/2016/Aug/4
http://www.securityfocus.com/archive/1/539069/100/0/threaded
http://www.securityfocus.com/bid/92203
http://www.securitytracker.com/id/1036550
http://www.securitytracker.com/id/1036551
http://www.vulnerability-lab.com/get_content.php?id=1687