Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:30 a.m.10 views

CVE-2023-36638

An improper privilege management vulnerability CWE-269 in FortiManager 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 through 6.4.11, 6.2 all versions, 6.0 all versions and FortiAnalyzer 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 through 6.4.11, 6.2 all versions, 6.0 all versions API may...

4.3CVSS6.8AI score0.00341EPSS
Exploits0References1
NVD
NVD
added 2023/09/13 1:15 p.m.24 views

CVE-2023-36638

An improper privilege management vulnerability CWE-269 in FortiManager 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 through 6.4.11, 6.2 all versions, 6.0 all versions and FortiAnalyzer 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 through 6.4.11, 6.2 all versions, 6.0 all versions API may...

4.3CVSS4.6AI score0.00341EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/09/13 12:29 p.m.26 views

CVE-2023-36638

An improper privilege management vulnerability CWE-269 in FortiManager 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 through 6.4.11, 6.2 all versions, 6.0 all versions and FortiAnalyzer 7.2.0 through 7.2.2, 7.0.0 through 7.0.7, 6.4.0 through 6.4.11, 6.2 all versions, 6.0 all versions API may...

4.3CVSS4.9AI score0.00341EPSS
Exploits0References1
CVE
CVE
added 2023/09/13 12:29 p.m.71 views

CVE-2023-36638

Fortinet CVE-2023-36638 is an improper privilege management (CWE-269) vulnerability affecting FortiManager and FortiAnalyzer. The flaw allows a remote, authenticated API admin user to access certain system settings (e.g., mail server settings) through the API by leveraging a stolen GUI session ID...

4.3CVSS4.6AI score0.00341EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder