Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An incorrect privilege assignment vulnerability [CWE-266] in FortiOS Security Fabric version 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, 7.2 all versions, 7.0 all versions, 6.4 all versions, may allow a remote authenticated attacker with high privileges to escalate their privileges to super-admin via registering the device to a malicious FortiManager.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
特权授予不正确
Vulnerability Title
Fortinet FortiOS Security Fabric 安全漏洞
Vulnerability Description
Fortinet FortiOS Security Fabric是美国飞塔(Fortinet)公司的一个网络安全平台。 Fortinet FortiOS Security Fabric 7.6.0至7.6.2版本、7.4.0至7.4.7版本、7.2所有版本、7.0所有版本和6.4所有版本存在安全漏洞,该漏洞源于权限分配不当,可能导致权限提升。
CVSS Information
N/A
Vulnerability Type
N/A