CVE-2021-26087

An improper neutralization of input during web page generation in FortiWLC version 8.6.0, version 8.5.3 and below, version 8.4.8 and below, version 8.3.3 web interface may allow both authenticated remote attackers and non-authenticated attackers in the same network as the appliance to perform a stored cross site scripting attack (XSS) via injecting malicious payloads in different locations.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://fortiguard.fortinet.com/psirt/FG-IR-20-137	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:fortinet:fortiwlc::::::::
	cpe:2.3:a:fortinet:fortiwlc::::::::
	cpe:2.3:a:fortinet:fortiwlc:8.3.3:::::::*
	cpe:2.3:a:fortinet:fortiwlc:8.6.0:::::::*

History

24 Jul 2025, 20:16

Type	Values Removed	Values Added
Summary		(es) Una neutralización incorrecta de la entrada durante la generación de páginas web en la interfaz web de FortiWLC versión 8.6.0, versión 8.5.3 y anteriores, versión 8.4.8 y anteriores, versión 8.3.3 puede permitir que tanto atacantes remotos autenticados como atacantes no autenticados en la misma red que el dispositivo realicen un ataque de cross site scripting (XSS) almacenado mediante la inyección de payloads maliciosos en diferentes ubicaciones.
References	~~() https://fortiguard.fortinet.com/psirt/FG-IR-20-137 -~~	() https://fortiguard.fortinet.com/psirt/FG-IR-20-137 - Vendor Advisory
First Time		Fortinet fortiwlc Fortinet
CPE		cpe:2.3:a:fortinet:fortiwlc:::::::: cpe:2.3:a:fortinet:fortiwlc:8.6.0:::::::* cpe:2.3:a:fortinet:fortiwlc:8.3.3:::::::*

17 Mar 2025, 14:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-17 14:15

Updated : 2025-07-24 20:16

NVD link : CVE-2021-26087

Mitre link : CVE-2021-26087

CVE.ORG link : CVE-2021-26087

JSON object : View

Products Affected

fortinet

fortiwlc

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"id": "CVE-2021-26087", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@fortinet.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}]}, "published": "2025-03-17T14:15:17.247", "references": [{"url": "https://fortiguard.fortinet.com/psirt/FG-IR-20-137", "tags": ["Vendor Advisory"], "source": "psirt@fortinet.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "psirt@fortinet.com", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "An improper neutralization of input during web page generation in FortiWLC version 8.6.0, version 8.5.3 and below, version 8.4.8 and below, version 8.3.3 web interface may allow both authenticated remote attackers and non-authenticated attackers in the same network as the appliance to perform a stored cross site scripting attack (XSS) via injecting malicious payloads in different locations."}, {"lang": "es", "value": "Una neutralizaci\u00f3n incorrecta de la entrada durante la generaci\u00f3n de p\u00e1ginas web en la interfaz web de FortiWLC versi\u00f3n 8.6.0, versi\u00f3n 8.5.3 y anteriores, versi\u00f3n 8.4.8 y anteriores, versi\u00f3n 8.3.3 puede permitir que tanto atacantes remotos autenticados como atacantes no autenticados en la misma red que el dispositivo realicen un ataque de cross site scripting (XSS) almacenado mediante la inyecci\u00f3n de payloads maliciosos en diferentes ubicaciones."}], "lastModified": "2025-07-24T20:16:57.290", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fortinet:fortiwlc:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA4E2F85-BC33-477A-9E04-89D6A1523DF7", "versionEndIncluding": "8.4.2", "versionStartIncluding": "8.4.0"}, {"criteria": "cpe:2.3:a:fortinet:fortiwlc:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6ACC86D0-8F8B-4F96-B871-B6C5EA408F7D", "versionEndExcluding": "8.5.4", "versionStartIncluding": "8.4.4"}, {"criteria": "cpe:2.3:a:fortinet:fortiwlc:8.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0BAFB6C-FAF8-4157-B84A-30B8735A6492"}, {"criteria": "cpe:2.3:a:fortinet:fortiwlc:8.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "18D7B164-2D5E-427E-81F4-6BBDA51131DC"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@fortinet.com"}