FortiOS

Multiple cross-site scripting (XSS) vulnerabilities (CVE-2017-3131CVE-2017-3132CVE-2017-3133) have been discovered within all FortiOS versions up to 5.6.0. Successful exploitation of these vulnerabilities could allow a threat actor to execute unauthorized code or commands. The NJCCIC recommends users and administrators of FortiOS review Fortinet’s PSIRT Advisory and upgrade to FortiOS version 5.6.1 as soon as possible.