CVE-2023-44253 in FortiManagerinfo

Zusammenfassung

von MITRE • 15.02.2024

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiManager version 7.4.0 through 7.4.1 and before 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.1 and before 7.2.5 and FortiAnalyzer-BigData before 7.2.5 allows an adom administrator to enumerate other adoms and device names via crafted HTTP or HTTPS requests.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Zuständig

Fortinet, Inc.

Reservieren

27.09.2023

Veröffentlichung

15.02.2024

Moderieren

akzeptiert

Eintrag

VDB-253942

CPE

bereit

EPSS

0.00682

KEV

nein

Aktivitäten

very low

Quellen

Do you want to use VulDB in your project?

Use the official API to access entries easily!