An instance of small space of random values in the RPC API of FortiSandbox prior to 4.0.0 may allow an attacker in possession of a few information pieces about the state of the device to possibly predict valid session IDs.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortisandbox |