An improper input validation vulnerability in FortiOS 6.2.1, 6.2.0, 6.0.8 and below until 5.4.0 under admin webUI may allow an attacker to perform an URL redirect attack via a specifically crafted request to the admin initial password change webpage.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-19-179 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2020-03-15T22:03:22
Updated: 2024-08-04T20:31:04.188Z
Reserved: 2019-01-23T00:00:00
Link: CVE-2019-6696
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-03-15T23:15:11.470
Modified: 2021-07-21T11:39:23.747
Link: CVE-2019-6696
Redhat
No data.