CVE-2023-44254

Published: 2024-09-10T15:15Z

Last Modified: 2024-12-12T13:56Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An authorization bypass through user-controlled key [CWE-639] vulnerability in FortiAnalyzer version 7.4.1 and before 7.2.5 and FortiManager version 7.4.1 and before 7.2.5 may allow a remote attacker with low privileges to read sensitive data via a crafted HTTP request. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt