How severe is CVE-2024-45326?

CVE-2024-45326 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2024-45326

Name: fortideceptor
Author: fortinet

4.3MEDIUM

An Improper Access Control vulnerability [CWE-284] in FortiDeceptor version 6.0.0, version 5.3.3 and below, version 5.2.1 and below, version 5.1.0, version 5.0.0 may allow an authenticated attacker wi

发布于: 1/14/2025更新于: 1/31/2025

描述

An Improper Access Control vulnerability [CWE-284] in FortiDeceptor version 6.0.0, version 5.3.3 and below, version 5.2.1 and below, version 5.1.0, version 5.0.0 may allow an authenticated attacker with none privileges to perform operations on the central management appliance via crafted requests.

AI分析AI驱动

受影响产品

fortinetfortideceptor

参考资料

https://fortiguard.fortinet.com/psirt/FG-IR-24-285
Vendor Advisory