An improper authorization vulnerabiltiy [CWE-285] in FortiClient Windows versions 7.0.0 and 6.4.6 and below and 6.2.8 and below may allow an unauthenticated malicious user to bypass the webfilter control via modifying the session-id paramater.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet forticlient 7.0.0 |
||
fortinet forticlient |
||
fortinet forticlient 6.2.7 |