An improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and before 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-23-270 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2023-12-13T06:43:21.604Z
Updated: 2024-08-02T19:01:35.408Z
Reserved: 2023-08-30T13:42:39.546Z
Link: CVE-2023-41673
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-12-13T07:15:15.860
Modified: 2024-11-21T08:21:27.757
Link: CVE-2023-41673
Redhat
No data.