← Home
SSL-VPN Reflected XSS
Source: fortinet / FG-IR-26-150
— original advisory
Published: 2026-07-14
· Last updated: 2026-07-14
· Vendor severity: Not rated by vendor
CVEs
| CVE | CVSS | CWE | Exploitation |
| CVE-2026-23573 |
6.1 |
CWE-79: Cross-Site Scripting (XSS) |
Not observed in the wild |
Affected Products
| Product | Affected versions | Fixed version |
| FortiOS |
FortiOS 7.2 |
Not specified by vendor |
| FortiOS |
FortiOS 7.4 |
Not specified by vendor |
| FortiOS |
FortiOS 7.6 |
Not specified by vendor |
| FortiOS |
FortiOS 8.0 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.9 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.6 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.7 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.8 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.0 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.1 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.2 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.3 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.4 |
Not specified by vendor |
| FortiPAM |
FortiPAM 1.5 |
Not specified by vendor |
| FortiProxy |
FortiProxy 7.4 |
Not specified by vendor |
| FortiProxy |
FortiProxy 7.6 |
Not specified by vendor |
| FortiProxy |
FortiProxy 7.2 |
Not specified by vendor |