2 matches found
CVE-2022-27484
A unverified password change in Fortinet FortiADC version 6.2.0 through 6.2.3, 6.1.x, 6.0.x, 5.x.x allows an authenticated attacker to bypass the Old Password check in the password change form via a crafted HTTP request...
CVE-2022-27484
Fortinet FortiADC CVE-2022-27484 affects FortiADC versions 5.x.x through 6.2.3 (and 6.1.x, 6.0.x). The issue is an unverified password change that lets an authenticated attacker bypass the Old Password check in the password change form via a crafted HTTP request. In the Fortinet advisory, exploit...