Multiple instances of improper neutralization of input during web page generation vulnerabilities in FortiSandbox before 4.0.0 may allow an unauthenticated attacker to perform an XSS attack via specifically crafted request parameters.
References
Link | Resource |
---|---|
https://fortiguard.com/advisory/FG-IR-20-209 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2021-08-04T18:11:11
Updated: 2021-08-04T18:11:11
Reserved: 2021-01-13T00:00:00
Link: CVE-2021-24014
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-08-04T19:15:08.373
Modified: 2021-08-11T17:34:27.563
Link: CVE-2021-24014
JSON object: View
Redhat Information
No data.
CWE