Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-36554


A improper access control in Fortinet FortiManager version 7.4.0, version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.10, version 6.4.0 through 6.4.13, 6.2 all versions allows attacker to execute unauthorized code or commands via specially crafted HTTP requests.


Published

2024-03-12T15:15:45.693

Last Modified

2024-11-21T08:09:55.333

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.1 (HIGH)

Weaknesses
  • Type: Primary
    CWE-284

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application fortinet fortimanager ≤ 6.2.12 Yes
Application fortinet fortimanager ≤ 6.4.13 Yes
Application fortinet fortimanager ≤ 7.0.10 Yes
Application fortinet fortimanager ≤ 7.2.3 Yes
Application fortinet fortimanager 7.4.0 Yes

References