Cross-Site Scripting (XSS) Vulnerability in FortiADC Versions 7.1.1 and below, 7.0.3 and below, 6.2.5 and below

Cross-Site Scripting (XSS) Vulnerability in FortiADC Versions 7.1.1 and below, 7.0.3 and below, 6.2.5 and below

CVE-2022-43952 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiADC version 7.1.1 and below, version 7.0.3 and below, version 6.2.5 and below may allow an authenticated attacker to perform a cross-site scripting attack via crafted HTTP requests.

Learn more about our Web App Pen Testing.