CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-7342

A weak password recovery process vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows an attacker to execute unauthorized code or commands via a hidden Close button

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.9%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://fortiguard.com/psirt/FG-IR-17-114
https://fortiguard.com/psirt/FG-IR-17-114

Products affected by CVE-2017-7342

Fortinet » Fortiportal » Version: N/A

cpe:2.3:a:fortinet:fortiportal:-
Fortinet » Fortiportal » Version: 2.3.0

cpe:2.3:a:fortinet:fortiportal:2.3.0
Fortinet » Fortiportal » Version: 2.3.1

cpe:2.3:a:fortinet:fortiportal:2.3.1
Fortinet » Fortiportal » Version: 3.2.0

cpe:2.3:a:fortinet:fortiportal:3.2.0
Fortinet » Fortiportal » Version: 3.2.1

cpe:2.3:a:fortinet:fortiportal:3.2.1
Fortinet » Fortiportal » Version: 3.2.2

cpe:2.3:a:fortinet:fortiportal:3.2.2
Fortinet » Fortiportal » Version: 4.0.0

cpe:2.3:a:fortinet:fortiportal:4.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-7342

Products

Pricing

Contact Us