Unrated severityNVD Advisory· Published Jul 12, 2021· Updated Oct 25, 2024
CVE-2021-26088
CVE-2021-26088
Description
An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets.
Affected products
2- Range: <=5.0.295
- Fortinet/Fortinet FSSO Windows DC Agent, FSSO Windows CAv5Range: FSSO Windows DC Agent 5.0.295, 5.0.294; FSSO Windows CA 5.0.295, 5.0.294
Patches
Vulnerability mechanics
References
1- fortiguard.com/advisory/FG-IR-20-191mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.