How severe is CVE-2024-23665?

CVE-2024-23665 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2024-23665

Name: fortiweb
Author: fortinet

5.9MEDIUM

Multiple improper authorization vulnerabilities [CWE-285] in FortiWeb version 7.4.2 and below, version 7.2.7 and below, version 7.0.10 and below, version 6.4.3 and below, version 6.3.23 and below may

Published: 6/3/2024Updated: 12/17/2024

Description

Multiple improper authorization vulnerabilities [CWE-285] in FortiWeb version 7.4.2 and below, version 7.2.7 and below, version 7.0.10 and below, version 6.4.3 and below, version 6.3.23 and below may allow an authenticated attacker to perform unauthorized ADOM operations via crafted requests.

AI AnalysisPowered by AI

Affected Products

fortinetfortiweb

References

https://fortiguard.fortinet.com/psirt/FG-IR-23-474
Vendor Advisory
https://fortiguard.fortinet.com/psirt/FG-IR-23-474
Vendor Advisory