CVE-2021-24006

Published: 2021-09-06T19:15Z

Last Modified: 2024-11-21T05:52Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An improper access control vulnerability in FortiManager versions 6.4.0 to 6.4.3 may allow an authenticated attacker with a restricted user profile to access the SD-WAN Orchestrator panel via directly visiting its URL. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt