ГлавнаяУязвимости → CVE-2023-46712
7.2высокая

CVE-2023-46712

Описание

A improper access control in Fortinet FortiPortal version 7.0.0 through 7.0.6, Fortinet FortiPortal version 7.2.0 through 7.2.1 allows attacker to escalate its privilege via specifically crafted HTTP requests.

Затрагиваемое ПО
Fortinet Fortiportal
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://fortiguard.com/psirt/FG-IR-23-395https://fortiguard.com/psirt/FG-IR-23-395