CVE-2023-48783 | Fortinet FortiPortal up to 5.3.8/6.0.14/7.0.6/7.2.1 GET Request authorization (FG-IR-23-408)

Inserito da Angelo Barbosa | Gen 10, 2024 | CVE

A vulnerability was found in Fortinet FortiPortal up to 5.3.8/6.0.14/7.0.6/7.2.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component GET Request Handler. The manipulation leads to authorization bypass.

This vulnerability is known as CVE-2023-48783. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-48783 | Fortinet FortiPortal up to 5.3.8/6.0.14/7.0.6/7.2.1 GET Request authorization (FG-IR-23-408)

Post correlati

CVE-2024-4475 | WP Logs Book Plugin up to 1.0.1 on WordPress cross-site request forgery

CVE-2024-38476 | Apache HTTP Server up to 2.4.59 Backend Application information disclosure

CVE-2023-41172 | NetScout nGeniusONE 6.3.4 Build 2298 cross site scripting

CVE-2024-1695 | HP Application Enabling Software Driver Privilege Escalation