Lucene search

K
cvelistFortinetCVELIST:CVE-2017-7336
HistoryJul 22, 2017 - 9:00 p.m.

CVE-2017-7336

2017-07-2221:00:00
fortinet
www.cve.org
5
cve-2017-7336
fortinet fortiwlm
hard-coded account
remote attacker
privilege escalation

AI Score

9.6

Confidence

High

EPSS

0.004

Percentile

72.9%

A hard-coded account named ‘upgrade’ in Fortinet FortiWLM 8.3.0 and lower versions allows a remote attacker to log-in and execute commands with ‘upgrade’ account privileges.

CNA Affected

[
  {
    "product": "Fortinet FortiWLM",
    "vendor": "Fortinet, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "8.3.0 and lower"
      }
    ]
  }
]

AI Score

9.6

Confidence

High

EPSS

0.004

Percentile

72.9%

Related for CVELIST:CVE-2017-7336