Lucene search
China National Vulnerability DatabaseCNVD-2022-05869HistorySep 09, 2021 - 12:00 a.m.
Fortinet FortiManager Licensing Issue Vulnerability
2021-09-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
fortinet fortimanager
licensing issue
vulnerability
authorization issue
authentication
global policy packages
post requests
security management platform
fortinet devices
management domains
EPSS
0.001
Percentile
22.7%
Fortinet FortiManager is a centralized network security management platform from Fortinet, Inc. The platform supports centralized management of any number of Fortinet devices and can group devices into different management domains (ADOM) to further simplify multi-device security deployment and management.An authorization issue vulnerability exists in Fortinet FortiManager, which stems from incorrect authentication in FortiManager. An attacker could exploit this vulnerability to assign or unassign global policy packages to the flatui/json module via POST requests.
Related
cve
cve
CVE-2021-24017
2021-09-30 16:15:07
cvelist
cvelist
CVE-2021-24017
2021-09-30 15:21:03
prion
prion
Authentication flaw
2021-09-30 16:15:00
fortinet
fortinet
FortiManager - Access Control missing in P&O module assignment vulnerability
2021-09-07 00:00:00
nvd
nvd
CVE-2021-24017
2021-09-30 16:15:07