4 matches found
Fortinet Fortigate Ability to modify privileges from Custom to Read-Write (FG-IR-22-346)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-346 advisory. - An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy...
CVE-2022-38378
An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an attacker that has access to the admin profile section System subsection Administrator Users to modify their own profile a...
CVE-2022-38378
An improper privilege management vulnerability CWE-269 in Fortinet FortiOS version 7.2.0 and before 7.0.7 and FortiProxy version 7.2.0 through 7.2.1 and before 7.0.7 allows an attacker that has access to the admin profile section System subsection Administrator Users to modify their own profile a...
CVE-2022-38378
Fortinet CVE-2022-38378 is an improper privilege management (CWE-269) vulnerability. FortiOS versions 7.2.0 and earlier than 7.0.7, and FortiProxy 7.2.0–7.2.1 (before 7.0.7) allow an attacker with access to the admin profile’s System > Administrator Users to modify their own profile and upgrad...