How severe is CVE-2024-23665?

CVE-2024-23665 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2024-23665

Name: fortiweb
Author: fortinet

5.9MEDIUM

Multiple improper authorization vulnerabilities [CWE-285] in FortiWeb version 7.4.2 and below, version 7.2.7 and below, version 7.0.10 and below, version 6.4.3 and below, version 6.3.23 and below may

发布于: 6/3/2024更新于: 12/17/2024

描述

Multiple improper authorization vulnerabilities [CWE-285] in FortiWeb version 7.4.2 and below, version 7.2.7 and below, version 7.0.10 and below, version 6.4.3 and below, version 6.3.23 and below may allow an authenticated attacker to perform unauthorized ADOM operations via crafted requests.

AI分析AI驱动

受影响产品

fortinetfortiweb

参考资料

https://fortiguard.fortinet.com/psirt/FG-IR-23-474
Vendor Advisory
https://fortiguard.fortinet.com/psirt/FG-IR-23-474
Vendor Advisory