How severe is CVE-2024-45326?

CVE-2024-45326 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2024-45326

Name: fortideceptor
Author: fortinet

4.3MEDIUM

An Improper Access Control vulnerability [CWE-284] in FortiDeceptor version 6.0.0, version 5.3.3 and below, version 5.2.1 and below, version 5.1.0, version 5.0.0 may allow an authenticated attacker wi

Published: 1/14/2025Updated: 1/31/2025

Description

An Improper Access Control vulnerability [CWE-284] in FortiDeceptor version 6.0.0, version 5.3.3 and below, version 5.2.1 and below, version 5.1.0, version 5.0.0 may allow an authenticated attacker with none privileges to perform operations on the central management appliance via crafted requests.

AI AnalysisPowered by AI

Affected Products

fortinetfortideceptor

References

https://fortiguard.fortinet.com/psirt/FG-IR-24-285
Vendor Advisory