CVE-2024-23105
7.5HIGHA Use Of Less Trusted Source [CWE-348] vulnerability in Fortinet FortiPortal version 7.0.0 through 7.0.6 and version 7.2.0 through 7.2.1 allows an unauthenticated attack to bypass IP protection throug
Published: 5/14/2024Updated: 11/21/2024
Description
A Use Of Less Trusted Source [CWE-348] vulnerability in Fortinet FortiPortal version 7.0.0 through 7.0.6 and version 7.2.0 through 7.2.1 allows an unauthenticated attack to bypass IP protection through crafted HTTP or HTTPS packets.
AI AnalysisPowered by AI
Affected Products
fortinetfortiportal
fortinetfortiportal
7.2.0
fortinetfortiportal
7.2.1
References
- https://fortiguard.com/psirt/FG-IR-24-021Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-24-021Vendor Advisory