ГлавнаяУязвимости → CVE-2023-36554
8.1высокая

CVE-2023-36554

Описание

A improper access control in Fortinet FortiManager version 7.4.0, version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.10, version 6.4.0 through 6.4.13, 6.2 all versions allows attacker to execute unauthorized code or commands via specially crafted HTTP requests.

Затрагиваемое ПО
Fortinet Fortimanager
CVSS
Балл8.1 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://fortiguard.com/psirt/FG-IR-23-103https://fortiguard.com/psirt/FG-IR-23-103