CVE-2024-23107 in FortiWebinformazioni

Riassunto

di MITRE • 03/06/2024

An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiWeb version 7.4.0, version 7.2.4 and below, version 7.0.8 and below, 6.3 all versions may allow an authenticated attacker to read password hashes of other administrators via CLI commands.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsabile

Fortinet, Inc.

Prenotare

11/01/2024

Divulgazione

03/06/2024

Moderazione

accettato

CPE

pronto

EPSS

0.00202

KEV

no

Attività

molto basso

Fonti

Want to know what is going to be exploited?

We predict KEV entries!