ГлавнаяУязвимости → CVE-2024-35273
7.2высокая

CVE-2024-35273

Описание

A out-of-bounds write in Fortinet FortiManager version 7.4.0 through 7.4.2, FortiAnalyzer version 7.4.0 through 7.4.2 allows attacker to escalation of privilege via specially crafted http requests.

Затрагиваемое ПО
Fortinet FortianalyzerFortinet Fortianalyzer cloudFortinet FortimanagerFortinet Fortimanager cloud
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://fortiguard.fortinet.com/psirt/FG-IR-24-106