Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:15 p.m.11 views

CVE-2020-15939

An improper access control vulnerability CWE-284 in FortiSandbox versions 3.2.1 and below and 3.1.4 and below may allow an authenticated, unprivileged attacker to download the device configuration file via the recovery URL...

4.3CVSS6.8AI score0.00646EPSS
Exploits0
NVD
NVD
added 2021/09/06 4:15 p.m.32 views

CVE-2020-15939

An improper access control vulnerability CWE-284 in FortiSandbox versions 3.2.1 and below and 3.1.4 and below may allow an authenticated, unprivileged attacker to download the device configuration file via the recovery URL...

4.3CVSS0.00646EPSS
Exploits0References1
OSV
OSV
added 2021/09/06 4:15 p.m.4 views

CVE-2020-15939

An improper access control vulnerability CWE-284 in FortiSandbox versions 3.2.1 and below and 3.1.4 and below may allow an authenticated, unprivileged attacker to download the device configuration file via the recovery URL...

4.3CVSS5.8AI score0.00646EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/09/06 3:19 p.m.12 views

CVE-2020-15939

An improper access control vulnerability CWE-284 in FortiSandbox versions 3.2.1 and below and 3.1.4 and below may allow an authenticated, unprivileged attacker to download the device configuration file via the recovery URL...

4.3CVSS6.8AI score0.00646EPSS
Exploits0References1
CVE
CVE
added 2021/09/06 3:19 p.m.73 views

CVE-2020-15939

FortiSandbox contains an improper access control vulnerability (CWE-284) that affects versions 3.2.1 and below and 3.1.4 and below. An authenticated, unprivileged attacker could download the device configuration file via the recovery URL. This CVE is supported by multiple sources (NVD entry CVE-2...

4.3CVSS4.5AI score0.00646EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder