CVE-2021-36167

Published: 2021-12-09T10:15Z

Last Modified: 2024-11-21T06:13Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An improper authorization vulnerabiltiy [CWE-285] in FortiClient Windows versions 7.0.0 and 6.4.6 and below and 6.2.8 and below may allow an unauthenticated attacker to bypass the webfilter control via modifying the session-id paramater. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt