CVE-2023-41673
7.1HIGHAn improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and before 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS
Опубликовано: 12/13/2023Обновлено: 11/21/2024
Описание
An improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and before 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests.
ИИ-АнализНа базе ИИ
Затронутые продукты
fortinetfortiadc
fortinetfortiadc
fortinetfortiadc
fortinetfortiadc
fortinetfortiadc
7.1.0
fortinetfortiadc
7.1.1
fortinetfortiadc
7.1.2
fortinetfortiadc
7.2.0
fortinetfortiadc
7.4.0
Ссылки
- https://fortiguard.com/psirt/FG-IR-23-270Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-23-270Vendor Advisory