CVE-2024-35277 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A missing authentication for critical function in Fortinet FortiPortal version 6.0.0 through 6.0.15, FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2…
High CVSS: 8.6

CVE-2024-35277

A missing authentication for critical function in Fortinet FortiPortal version 6.0.0 through 6.0.15, FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14 allows attacker to access to the configuration of the managed devices by sending specifically crafted packets
Vendor
Fortinet
Product
Fortimanager
CWE
CWE-306
Yayın Tarihi
2025-01-14 14:15:30
Güncelleme
2025-01-31 17:08:01
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-306 Fortimanager HIGH Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-24-135