CVE-2015-7360

Name of the Vulnerable Software and Affected Versions FortiSandbox versions prior to 2.1

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface (WebUI) of FortiSandbox. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via several parameters, including the serial parameter to "/alerts/summary/profile/"; the urlForCreatingReport parameter to "/csearch/report/export/"; the id parameter to "/analysis/detail/download/screenshot"; or vectors related to "Fortiview threats by users search filtered by vdom" or "PCAP file download generated by the VM scan feature."

Recommendations For versions prior to 2.1, update to version 2.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the Web User Interface (WebUI) to minimize the risk of exploitation. Avoid using the vulnerable parameters serial, urlForCreatingReport, and id in the affected API endpoints until the issue is resolved. Restrict access to the "Fortiview threats by users search filtered by vdom" and "PCAP file download generated by the VM scan feature" to minimize the risk of exploitation.