VYPR
Unrated severityNVD Advisory· Published Jun 11, 2024· Updated Aug 2, 2024

CVE-2024-31495

CVE-2024-31495

Description

A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiPortal versions 7.0.0 through 7.0.6 and version 7.2.0 allows privileged user to obtain unauthorized information via the report download functionality.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Fortinet/Fortiportalllm-fuzzy2 versions
    7.0.0 - 7.0.6, 7.2.0+ 1 more
    • (no CPE)range: 7.0.0 - 7.0.6, 7.2.0
    • (no CPE)range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.