An improper authorization in Fortinet FortiWebManager version 7.2.0 and 7.0.0 through 7.0.4 and 6.3.0 and 6.2.3 through 6.2.4 and 6.0.2 allows attacker to execute unauthorized code or commands via HTTP requests or CLI.
2024-06-05T08:15:09.537
2024-11-21T08:58:07.910
Modified
CVSSv3.1: 6.5 (MEDIUM)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | fortinet | fortiwebmanager | < 6.2.5 | Yes |
Application | fortinet | fortiwebmanager | < 7.0.5 | Yes |
Application | fortinet | fortiwebmanager | 6.0.2 | Yes |
Application | fortinet | fortiwebmanager | 6.3.0 | Yes |
Application | fortinet | fortiwebmanager | 7.2.0 | Yes |