An improper privilege management vulnerability [CWE-269] in FortiADC versions 6.2.1 and below, 6.1.5 and below, 6.0.4 and below, 5.4.5 and below and 5.3.7 and below may allow a remote authenticated attacker with restricted user profile to modify the system files using the shell access.
2022-09-06T16:15:08.333
2024-11-21T06:28:38.977
Modified
CVSSv3.1: 6.3 (MEDIUM)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | fortinet | fortiadc | ≤ 5.3.7 | Yes |
Application | fortinet | fortiadc | ≤ 5.4.5 | Yes |
Application | fortinet | fortiadc | ≤ 6.0.4 | Yes |
Application | fortinet | fortiadc | ≤ 6.1.5 | Yes |
Application | fortinet | fortiadc | 6.2.0 | Yes |
Application | fortinet | fortiadc | 6.2.1 | Yes |