CVE-2023-44250
8.8HIGHAn improper privilege management vulnerability [CWE-269] in a Fortinet FortiOS HA cluster version 7.4.0 through 7.4.1 and 7.2.5 and in a FortiProxy HA cluster version 7.4.0 through 7.4.1 allows an aut
게시됨: 1/10/2024업데이트됨: 11/21/2024
설명
An improper privilege management vulnerability [CWE-269] in a Fortinet FortiOS HA cluster version 7.4.0 through 7.4.1 and 7.2.5 and in a FortiProxy HA cluster version 7.4.0 through 7.4.1 allows an authenticated attacker to perform elevated actions via crafted HTTP or HTTPS requests.
AI 분석AI 기반
영향받는 제품
fortinetfortiproxy
7.4.0
fortinetfortiproxy
7.4.1
fortinetfortios
7.2.5
fortinetfortios
7.4.0
fortinetfortios
7.4.1
참조
- https://fortiguard.com/psirt/FG-IR-23-315Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-23-315Vendor Advisory