CVE-2024-23665 | Fortinet FortiWeb up to 6.3.23/6.4.3/7.0.10/7.2.7/7.4.2 Requests improper authorization (FG-IR-23-474)

Posted by Angelo Barbosa | Jun 3, 2024 | CVE

A vulnerability was found in Fortinet FortiWeb up to 6.3.23/6.4.3/7.0.10/7.2.7/7.4.2. It has been rated as critical. This issue affects some unknown processing of the component Requests Handler. The manipulation leads to improper authorization.

The identification of this vulnerability is CVE-2024-23665. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23665 | Fortinet FortiWeb up to 6.3.23/6.4.3/7.0.10/7.2.7/7.4.2 Requests improper authorization (FG-IR-23-474)

Related Posts

CVE-2024-24821 | Composer InstalledVersions.php Local Privilege Escalation

CVE-2024-41121 | woodpecker-ci woodpecker up to 2.6.x injection

CVE-2024-6679 | witmy my-springsecurity-plus up to 2024-07-04 /api/role params.dataScope sql injection (IAAHCR)

CVE-2024-36457 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.7 PAM Endpoint improper authentication