VULHUB ™

The FortiGate web interface is prone to an HTML injection vulnerability. Denied requests are logged into a web filter log which is viewable through the web administrative interface. HTML and script code will not be sanitized when these requests are logged. An attacker could exploit this to cause hostile code to be rendered in the browser of an administrative user who views the logs, allowing for various attacks including theft of administrative cookies and compromise of the firewall. This issue reportedly exists in FortiOS releases prior to 2.50MR4.

The FortiGate web interface is prone to an HTML injection vulnerability. Denied requests are logged into a web filter log which is viewable through the web administrative interface. HTML and script code will not be sanitized when these requests are logged. An attacker could exploit this to cause hostile code to be rendered in the browser of an administrative user who views the logs, allowing for various attacks including theft of administrative cookies and compromise of the firewall. This issue reportedly exists in FortiOS releases prior to 2.50MR4.