描述
A client-side enforcement of server-side security in Fortinet FortiPortal version 6.0.0 through 6.0.14 allows attacker to improper access control via crafted HTTP requests.
AI分析AI驱动
受影响产品
fortinetfortiportal
参考资料
- https://fortiguard.fortinet.com/psirt/FG-IR-23-406Vendor Advisory
- https://fortiguard.fortinet.com/psirt/FG-IR-23-406Vendor Advisory