An Insufficient Verification of Data Authenticity vulnerability in FortiManager 6.2.1, 6.2.0, 6.0.6 and below may allow an unauthenticated attacker to perform a Cross-Site WebSocket Hijacking (CSWSH) attack.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-19-191 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2020-03-15T22:20:58
Updated: 2024-08-05T01:47:13.427Z
Reserved: 2019-10-16T00:00:00
Link: CVE-2019-17654
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-03-15T23:15:11.407
Modified: 2020-03-19T20:15:35.033
Link: CVE-2019-17654
Redhat
No data.