Unrated severityNVD Advisory· Published Feb 2, 2022· Updated Oct 22, 2024
CVE-2021-36177
CVE-2021-36177
Description
An improper access control vulnerability [CWE-284] in FortiAuthenticator HA service 6.3.2 and below, 6.2.x, 6.1.x, 6.0.x may allow an attacker on the same vlan as the HA management interface to make an unauthenticated direct connection to the FAC's database.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=6.3.2, 6.2.x, 6.1.x, 6.0.x
Patches
Vulnerability mechanics
References
1- fortiguard.com/psirt/FG-IR-20-217mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.