ГлавнаяУязвимости → CVE-2024-45330
7.2высокая

CVE-2024-45330

Описание

A use of externally-controlled format string in Fortinet FortiAnalyzer versions 7.4.0 through 7.4.3, 7.2.2 through 7.2.5 allows attacker to escalate its privileges via specially crafted requests.

Затрагиваемое ПО
Fortinet FortianalyzerFortinet Fortianalyzer cloud
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://fortiguard.fortinet.com/psirt/FG-IR-24-196