An improper access control vulnerability [CWE-284] in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 and below and FortiProxy 2.0.1 and below, 1.2.9 and below may allow an authenticated low-privileged malicious user to escalate their privileges to super_admin via a specific crafted configuration of fabric automation CLI script and auto-script features.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiproxy 2.0.0 |
||
fortinet fortiproxy |
||
fortinet fortios |
||
fortinet fortios 7.0.0 |
||
fortinet fortiproxy 2.0.1 |