Unrated severityNVD Advisory· Published May 4, 2022· Updated Oct 25, 2024
CVE-2021-41020
CVE-2021-41020
Description
An improper access control vulnerability [CWE-284] in FortiIsolator versions 2.3.2 and below may allow an authenticated, non privileged attacker to regenerate the CA certificate via the regeneration URL.
Affected products
2<=2.3.2+ 1 more
- (no CPE)range: <=2.3.2
- (no CPE)range: FortiIsolator 2.3.2, 2.3.1, 2.3.0
Patches
Vulnerability mechanics
References
1- fortiguard.com/psirt/FG-IR-21-040mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.