Test ID:	1.3.6.1.4.1.25623.1.0.140263
Category:	FortiOS Local Security Checks
Title:	Fortinet FortiManager Open Redirect Vulnerability (FG-IR-17-014)
Summary:	Fortinet FortiManager is prone to an open redirect; vulnerability.
Description:	Summary: Fortinet FortiManager is prone to an open redirect vulnerability. Vulnerability Insight: The FortiManager WebUI accept a user-controlled input that specifies a link to an external site, and uses that link in a redirect. Affected Software/OS: Fortinet FortiManager version 5.4.0 through 5.4.2. Solution: Update to version 5.4.3 or later. CVSS Score: 5.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-3126 BugTraq ID: 98557 http://www.securityfocus.com/bid/98557 http://www.securitytracker.com/id/1038539 http://www.securitytracker.com/id/1038540
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.