Patryk_Bogdan

Name of the Vulnerable Software and Affected Versions: FortiOS versions 5.6.0 and earlier Description: The issue is related to a Cross-Site Scripting vulnerability in the Replacement Message HTML for SSL-VPN, which is caused by insufficient protection of the web page structure. This allows an attacker to execute unauthorized code or commands. Exploitation of the vulnerability may enable a remote attacker to inject arbitrary JavaScript or HTML code. Recommendations: For FortiOS versions 5.6.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: FortiOS versions 5.6.0 and earlier Description: A Cross-Site Scripting issue allows attackers to execute unauthorized code or commands via the `action` input during the activation of a FortiToken. The vulnerability is caused by insufficient protection of the web page structure, which can be exploited by a remote attacker to inject arbitrary JavaScript or HTML code during FortiToken activation using the `action` parameter. Recommendations: For FortiOS versions 5.6.0 and earlier, consider disabling the FortiToken activation feature until a patch is available to prevent exploitation. Restrict access to the vulnerable web interface to minimize the risk of remote code injection. Avoid using the `action` parameter in the affected web interface until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: FortiOS versions 5.4.0 through 5.4.4 FortiOS version 5.6.0 Description: The issue is related to a Cross-Site Scripting vulnerability that allows attackers to execute unauthorized code or commands. This is caused by insufficient protection of the web page structure in the FortiView component of the FortiOS web interface. An attacker can exploit this vulnerability by using the filter input in "Applications" under FortiView to inject arbitrary JavaScript or HTML code. Recommendations: For FortiOS versions 5.4.0 through 5.4.4, consider disabling the filter input in "Applications" under FortiView as a temporary workaround until a patch is available. For FortiOS version 5.6.0, restrict access to the FortiView component to minimize the risk of exploitation. Avoid using the filter input in the affected FortiView "Applications" section until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Brother printer software versions (affected versions not specified) Affected models are: MFC-J6973CDW MFC-J4420DW MFC-8710DW MFC-J4620DW MFC-L8850CDW MFC-J3720 MFC-J6520DW MFC-L2740DW MFC-J5910DW MFC-J6920DW MFC-L2700DW MFC-9130CW MFC-9330CDW MFC-9340CDW MFC-J5620DW MFC-J6720DW MFC-L8600CDW MFC-L9550CDW MFC-L2720DW DCP-L2540DW DCP-L2520DW HL-3140CW HL-3170CDW HL-3180CDW HL-L8350CDW HL-L2380DW ADS-2500W ADS-1000W ADS-1500W **Description** The vulnerability is related to the authentication procedure in Brother printer software. After a failed login attempt, the HTTP response includes a valid `AuthCookie`, which can be exploited by a remote attacker to gain access to the device. **Recommendations** For each of the affected models, consider disabling the authentication mechanism until a patch is available. Restrict access to the device to minimize the risk of exploitation. Avoid using the device until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DWR-116 device with firmware before V1.05b09 **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in a "GET /uir/" request. This is a directory traversal vulnerability in the web interface. **Recommendations** For firmware before V1.05b09, update to V1.05b09 or later to resolve the issue. As a temporary workaround, consider restricting access to the web interface to minimize the risk of exploitation. Avoid using the .. (dot dot) sequence in the "GET /uir/" request until the issue is resolved.