4 matches found
CVE-2021-24019
An insufficient session expiration vulnerability CWE- 613 in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID via other, hypothetical attacks...
CVE-2021-24019
creationtimestamp| type| source ---|---|--- 2021-10-06 14:37:52+00:00| seen| https://t.me/cibsecurity/30031 2025-03-28 10:00:05+00:00| published-proof-of-concept| Telegram/aPCPdIPGkODZoxCaDJ8O34mKLW0JTsj39ljwIG9BQaA-s 2025-03-31 21:02:06+00:00| seen|...
CVE-2021-24019
An insufficient session expiration vulnerability CWE- 613 in FortiClientEMS versions 6.4.2 and below, 6.2.8 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID via other, hypothetical attacks...
CVE-2021-24019
FortiClientEMS has an insufficient session expiration vulnerability (CWE-613) that affects FortiClientEMS versions 6.4.2 and below and 6.2.8 and below. An attacker who can obtain an unexpired admin session ID may reuse it to gain admin privileges. Remediation involves applying the Fortinet fixes:...