An improper neutralization of inputs during web page generation vulnerability [CWE-79] in FortiNAC version 9.4.0 through 9.4.4, 9.2.0 through 9.2.8, 9.1.0 through 9.1.10, 8.8.0 through 8.8.11, 8.7.0 through 8.7.6, 7.2.0 through 7.2.3 may allow a remote authenticated attacker to perform stored and reflected cross site scripting (XSS) attack via crafted HTTP requests.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2024-05-14T16:19:08.151Z

Updated: 2024-08-02T01:52:57.296Z

Reserved: 2024-04-04T12:52:41.585Z

Link: CVE-2024-31488

cve-icon Vulnrichment

Updated: 2024-05-17T12:21:19.444Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-14T17:17:23.733

Modified: 2024-11-21T09:13:38.013

Link: CVE-2024-31488

cve-icon Redhat

No data.