3 matches found
CVE-2023-27998
A lack of custom error pages vulnerability CWE-756 in FortiPresence versions 1.2.0 through 1.2.1 and all versions of 1.1 and 1.0 may allow an unauthenticated attacker with the ability to navigate to the login GUI to gain sensitive information via navigating to specific HTTPs paths...
CVE-2023-27998
creationtimestamp| type| source ---|---|--- 2023-09-13 16:23:43+00:00| seen| https://t.me/cibsecurity/70376...
CVE-2023-27998
CVE-2023-27998 affects FortiPresence up to 1.2.1 (and all 1.0–1.2.1 per PT-2023-21471) due to a lack of custom error pages. An unauthenticated attacker who can access the login GUI can navigate to specific HTTP(S) paths to disclose sensitive information. The underlying issue is the absence of pro...