Critical Infrastructure Sectors: Critical Manufacturing
An improper privilege management vulnerability [CWE-269] in a Fortinet FortiOS HA cluster version 7.4.0 up to and including 7.4.1 and 7.2.5 and in a FortiProxy HA cluster version 7.4.0 up to and including 7.4.1 allows an authenticated malicious user to perform elevated actions via crafted HTTP or HTTPS requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortios 7.4.0 |
||
fortinet fortios 7.2.5 |
||
fortinet fortiproxy 7.4.0 |
||
fortinet fortiproxy 7.4.1 |
||
fortinet fortios 7.4.1 |