Details of VAR-201710-1337

ID

VAR-201710-1337

CVE

CVE-2017-7335

TITLE

Fortinet FortiWLC Vulnerable to cross-site scripting

Trust: 0.8

sources: JVNDB: JVNDB-2017-009747

DESCRIPTION

A Cross-Site Scripting (XSS) vulnerability in Fortinet FortiWLC 6.1-x (6.1-2, 6.1-4 and 6.1-5); 7.0-x (7.0-7, 7.0-8, 7.0-9, 7.0-10); and 8.x (8.0, 8.1, 8.2 and 8.3.0-8.3.2) allows an authenticated user to inject arbitrary web script or HTML via non-sanitized parameters "refresh" and "branchtotable" present in HTTP POST requests. Fortinet FortiWLC Contains a cross-site scripting vulnerability.Information may be obtained and information may be altered. FortinetFortiWLC is a network management device. Fortinet FortiWLC is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks. The following versions are vulnerable: FortiWLC 6.1-2, 6.1-4 and 6.1-5 FortiWLC 7.0-7, 7.0-8, 7.0-9, 7.0-10 FortiWLC 8.0, 8.1, 8.2 and 8.3.0 through 8.3.2. Fortinet FortiWLC is a wireless LAN controller from Fortinet. The following versions are affected: Fortinet FortiWLC Version 6.1-2, Version 6.1-4, Version 6.1-5, Version 7.0-7, Version 7.0-8, Version 7.0-9, Version 7.0-10, Version 8.0, Version 8.1, Version 8.2 , version 8.3.0-8.3.2

Trust: 2.52

sources: NVD: CVE-2017-7335 // JVNDB: JVNDB-2017-009747 // CNVD: CNVD-2017-32268 // BID: 101287 // VULHUB: VHN-115538

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-32268

AFFECTED PRODUCTS

vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	7.0-8	Trust: 3.3
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.1	Trust: 3.3
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	6.1-2	Trust: 2.5
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	6.1-4	Trust: 2.5
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	6.1-5	Trust: 2.5
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	7.0-7	Trust: 2.5
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	7.0-9	Trust: 2.5
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	7.0-10	Trust: 2.5
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.0	Trust: 2.5
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.2	Trust: 2.5
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.3.2	Trust: 1.9
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.3.0	Trust: 1.6
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.3.1	Trust: 1.0
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	6.1-x (6.1-2	Trust: 0.8
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	6.1-4 and 6.1-5)	Trust: 0.8
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	7.0-x (7.0-7	Trust: 0.8
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	7.0-9 and 7.0-10)	Trust: 0.8
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.x (8.0	Trust: 0.8
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.2 and 8.3.0-8.3.2)	Trust: 0.8
vendor:	fortinet	model:	fortiwlc	scope:	eq	version:	8.3	Trust: 0.3
vendor:	fortinet	model:	fortiwlc	scope:	ne	version:	8.3.3	Trust: 0.3
vendor:	fortinet	model:	fortiwlc	scope:	ne	version:	7.0.11	Trust: 0.3

sources: CNVD: CNVD-2017-32268 // BID: 101287 // JVNDB: JVNDB-2017-009747 // CNNVD: CNNVD-201710-1052 // NVD: CVE-2017-7335

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-7335
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2017-7335
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2017-32268
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201710-1052
value:	LOW
Trust: 0.6
VULHUB:	VHN-115538
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2017-7335
severity:	LOW
baseScore:	3.5
vectorString:	AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	6.8
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-32268
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-115538
severity:	LOW
baseScore:	3.5
vectorString:	AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	SINGLE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	6.8
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-7335
baseSeverity:	MEDIUM
baseScore:	5.4
vectorString:	CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	REQUIRED
scope:	CHANGED
confidentialityImpact:	LOW
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	2.3
impactScore:	2.7
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-32268 // VULHUB: VHN-115538 // JVNDB: JVNDB-2017-009747 // CNNVD: CNNVD-201710-1052 // NVD: CVE-2017-7335

PROBLEMTYPE DATA

problemtype:

CWE-79

Trust: 1.9

sources: VULHUB: VHN-115538 // JVNDB: JVNDB-2017-009747 // NVD: CVE-2017-7335

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201710-1052

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201710-1052

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-009747

PATCH

title:	FG-IR-17-106	url:	https://fortiguard.com/psirt/FG-IR-17-106	Trust: 0.8
title:	FortinetFortiWLC has multiple patches for cross-site scripting vulnerability (CNVD-2017-32268)	url:	https://www.cnvd.org.cn/patchInfo/show/104965	Trust: 0.6
title:	Fortinet FortiWLC Fixes for cross-site scripting vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=75924	Trust: 0.6

sources: CNVD: CNVD-2017-32268 // JVNDB: JVNDB-2017-009747 // CNNVD: CNNVD-201710-1052

EXTERNAL IDS

db:	NVD	id:	CVE-2017-7335	Trust: 3.4
db:	BID	id:	101287	Trust: 2.0
db:	JVNDB	id:	JVNDB-2017-009747	Trust: 0.8
db:	CNNVD	id:	CNNVD-201710-1052	Trust: 0.7
db:	BID	id:	101287101287	Trust: 0.6
db:	CNVD	id:	CNVD-2017-32268	Trust: 0.6
db:	NSFOCUS	id:	37821	Trust: 0.6
db:	VULHUB	id:	VHN-115538	Trust: 0.1

sources: CNVD: CNVD-2017-32268 // VULHUB: VHN-115538 // BID: 101287 // JVNDB: JVNDB-2017-009747 // CNNVD: CNNVD-201710-1052 // NVD: CVE-2017-7335

REFERENCES

url:	https://fortiguard.com/psirt/fg-ir-17-106	Trust: 2.0
url:	http://www.securityfocus.com/bid/101287	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2017-7335	Trust: 1.4
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7335	Trust: 0.8
url:	http://www.nsfocus.net/vulndb/37821	Trust: 0.6
url:	http://www.fortinet.com/	Trust: 0.3

sources: CNVD: CNVD-2017-32268 // VULHUB: VHN-115538 // BID: 101287 // JVNDB: JVNDB-2017-009747 // CNNVD: CNNVD-201710-1052 // NVD: CVE-2017-7335

CREDITS

Ali Ardic

Trust: 0.9

sources: BID: 101287 // CNNVD: CNNVD-201710-1052

SOURCES

db:	CNVD	id:	CNVD-2017-32268
db:	VULHUB	id:	VHN-115538
db:	BID	id:	101287
db:	JVNDB	id:	JVNDB-2017-009747
db:	CNNVD	id:	CNNVD-201710-1052
db:	NVD	id:	CVE-2017-7335

LAST UPDATE DATE

2024-11-23T22:52:20.483000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-32268	date:	2017-11-01T00:00:00
db:	VULHUB	id:	VHN-115538	date:	2017-11-17T00:00:00
db:	BID	id:	101287	date:	2017-10-13T00:00:00
db:	JVNDB	id:	JVNDB-2017-009747	date:	2017-11-21T00:00:00
db:	CNNVD	id:	CNNVD-201710-1052	date:	2017-11-01T00:00:00
db:	NVD	id:	CVE-2017-7335	date:	2024-11-21T03:31:38.617

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-32268	date:	2017-11-01T00:00:00
db:	VULHUB	id:	VHN-115538	date:	2017-10-26T00:00:00
db:	BID	id:	101287	date:	2017-10-13T00:00:00
db:	JVNDB	id:	JVNDB-2017-009747	date:	2017-11-21T00:00:00
db:	CNNVD	id:	CNNVD-201710-1052	date:	2017-10-27T00:00:00
db:	NVD	id:	CVE-2017-7335	date:	2017-10-26T13:29:00.277