Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A insufficient session expiration in Fortinet FortiEDR version 5.0.0 through 5.0.1 allows attacker to execute unauthorized code or commands via api request
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
不充分的会话过期机制
Vulnerability Title
Fortinet FortiEDR 代码问题漏洞
Vulnerability Description
Fortinet FortiEDR是美国飞塔(Fortinet)公司的一个从头开始构建的端点安全解决方案。 Fortinet FortiEDR 存在安全漏洞,该漏洞源于对会话过期时间的处理不足,允许攻击者通过 api 请求执行未经授权的代码或命令。
CVSS Information
N/A
Vulnerability Type
N/A