VYPR
Unrated severityNVD Advisory· Published Mar 12, 2024· Updated Aug 2, 2024

CVE-2023-46717

CVE-2023-46717

Description

An improper authentication vulnerability [CWE-287] in FortiOS versions 7.4.1 and below, versions 7.2.6 and below, and versions 7.0.12 and below when configured with FortiAuthenticator in HA may allow a readonly user to gain read-write access via successive login attempts.

Affected products

2
  • Fortinet/Fortiosllm-fuzzy2 versions
    <=7.4.1 & <=7.2.6 & <=7.0.12+ 1 more
    • (no CPE)range: <=7.4.1 & <=7.2.6 & <=7.0.12
    • (no CPE)range: 7.4.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.