Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2 all versions, 7.1 all versions, 7.0 all versions may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the communication channel between the device and public SDN connectors.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
证书验证不恰当
Vulnerability Title
Fortinet FortiADC 信任管理问题漏洞
Vulnerability Description
Fortinet FortiADC是美国飞塔(Fortinet)公司的一款应用交付控制器。 Fortinet FortiADC存在信任管理问题漏洞,该漏洞源于存在不当的证书验证漏洞,可能允许远程未经身份验证的攻击者在设备和公共SDN连接器之间的通信通道上执行中间人攻击。
CVSS Information
N/A
Vulnerability Type
N/A