Tecnologias da Informação
FortiOS / FortiProxy / FortiSwitchManager – Authentication bypass on administrative interface

FortiOS / FortiProxy / FortiSwitchManager – Authentication bypass on administrative interface

An authentication bypass using an alternate path or channel vulnerability [CWE-288] in FortiOS, FortiProxy and FortiSwitchManager may allow an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.

FortiOS / FortiProxy / FortiSwitchManager – Authentication bypass on administrative interface