Fortinet FortiAnalyzer SQLi (FG-IR-24-437)

The version of FortiAnalyzer installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-437 advisory. - An Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability CWE-89 in...

CVE-2021-44793

Single Connect does not perform an authorization check when using the sc-reports-ui" module. A remote attacker could exploit this vulnerability to access the device configuration page and export the data to an external file. The exploitation of this vulnerability might allow a remote attacker to...