CVE-2023-44253 in FortiManagerinformazioni

Riassunto

di MITRE • 15/02/2024

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiManager version 7.4.0 through 7.4.1 and before 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.1 and before 7.2.5 and FortiAnalyzer-BigData before 7.2.5 allows an adom administrator to enumerate other adoms and device names via crafted HTTP or HTTPS requests.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsabile

Fortinet, Inc.

Prenotare

27/09/2023

Divulgazione

15/02/2024

Moderazione

accettato

CPE

pronto

EPSS

0.00682

KEV

no

Attività

molto basso

Fonti

Do you want to use VulDB in your project?

Use the official API to access entries easily!