CVE-2024-45329 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A authorization bypass through user-controlled key in Fortinet FortiPortal versions 7.4.0, versions 7.2.0 through 7.2.5, and versions 7.0.0 through 7.0.8 may al…
Medium CVSS: 4.3

CVE-2024-45329

A authorization bypass through user-controlled key in Fortinet FortiPortal versions 7.4.0, versions 7.2.0 through 7.2.5, and versions 7.0.0 through 7.0.8 may allow an authenticated attacker to view unauthorized device information via key modification in API requests.
Vendor
Fortinet
Product
Fortiportal
CWE
CWE-639
Yayın Tarihi
2025-06-10 17:19:25
Güncelleme
2025-07-22 21:24:55
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-639 Fortiportal MEDIUM Fortinet 2025

Referanslar

https://fortiguard.fortinet.com/psirt/FG-IR-24-274