VDB

GCVE-110-NCSC-2024-287

GCVE-110-NCSC-2024-287
Advisory PublishedCVSS 4.3/10
Vulnetix · Advisory published July 10, 2024
Fortinet heeft een aantal kwetsbaarheden verholpen in FortiAIOps, Fortinet FortiPortal, FortiWeb en Fortinet FortiExtender.

Weaknesses (CWE)

CWE-613Insufficient Session ExpirationCWE-639Authorization Bypass Through User-Controlled KeyCWE-295Improper Certificate ValidationCWE-532Insertion of Sensitive Information into Log FileCWE-284Improper Access ControlCWE-1236Improper Neutralization of Formula Elements in a CSV File

Risk Scores

CVSS 3.1
4.3/10
Medium · CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C

Affected Products

VendorProductVersionsPlatforms
fortinetfortiportal
fortinetfortiextender
fortinetfortiweb
fortinetfortiaiops

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›