VYPR
Unrated severityNVD Advisory· Published Sep 13, 2023· Updated Sep 25, 2024

CVE-2023-27998

CVE-2023-27998

Description

A lack of custom error pages vulnerability [CWE-756] in FortiPresence versions 1.2.0 through 1.2.1 and all versions of 1.1 and 1.0 may allow an unauthenticated attacker with the ability to navigate to the login GUI to gain sensitive information via navigating to specific HTTP(s) paths.

Affected products

2
  • Fortinet/FortiPresencellm-fuzzy2 versions
    >=1.0.0, <=1.2.1+ 1 more
    • (no CPE)range: >=1.0.0, <=1.2.1
    • (no CPE)range: 1.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.