CVE-2023-45581

8.8HIGH

An improper privilege management vulnerability [CWE-269] in Fortinet FortiClientEMS version 7.2.0 through 7.2.2 and before 7.0.10 allows an Site administrator with Super Admin privileges to perform gl

公開日: 2/15/2024更新日: 11/21/2024
NVDで表示MITREで表示

説明

An improper privilege management vulnerability [CWE-269] in Fortinet FortiClientEMS version 7.2.0 through 7.2.2 and before 7.0.10 allows an Site administrator with Super Admin privileges to perform global administrative operations affecting other sites via crafted HTTP or HTTPS requests.

AI分析AIによる分析

影響を受ける製品

fortinetforticlient_enterprise_management_server
fortinetforticlient_enterprise_management_server

参照