Fortinet: >> Fortisoar >> 7.3.1 Security Vulnerabilities
An improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiSOAR 7.3.0 through 7.3.2 allows an authenticated, remote attacker to inject arbitrary web script or HTML via the Communications module.
CVSS Score
6.8
EPSS Score
0.015
Published
2024-08-13
A improper neutralization of special elements used in a template engine vulnerability in Fortinet FortiSOAR 7.3.0 through 7.3.1 allows an authenticated, remote attacker to execute arbitrary code via a crafted payload.
CVSS Score
7.2
EPSS Score
0.018
Published
2023-04-11
A improper access control vulnerability in Fortinet FortiSOAR 7.3.0 - 7.3.1 allows an attacker authenticated on the administrative interface to perform unauthorized actions via crafted HTTP requests.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-03-07
Page 2