Primary

Context

Fortinet FortiGate Stored Cross-Site Scripting Vulnerability via Crafted DHCP Packets

Vulnerability

Patched

A stored cross-site scripting vulnerability has been identified in Fortinet FortiGate versions 6.2.0 through 6.2.1 and 6.0.0 through 6.0.6. The issue arises in the hostname parameter of DHCP packets on the DHCP monitor page. An unauthenticated attacker on the same network as the FortiGate device can exploit this vulnerability by sending a specially crafted DHCP packet.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user.

Remediation

Users are advised to upgrade to FortiOS version 6.2.2 or above, or FortiOS version 6.0.7 or above.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

1.7

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

1.7

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fortinet FortiGate Stored Cross-Site Scripting Vulnerability via Crafted DHCP Packets

Vulnerability

Impact

Remediation

Affected Products

Fortinet FortiOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating