6 matches found
Siemens APE1808 Incorrect Privilege Assignment (CVE-2024-40591)
An incorrect privilege assignment vulnerability in Fortinet FortiOS version 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.9 and before 7.0.15 allows an authenticated admin whose access profile has the Security Fabric permission to escalate their privileges to super-admin by connecting the targett...
CVE-2024-40591
An incorrect privilege assignment vulnerability CWE-266 in Fortinet FortiOS version 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.9 and before 7.0.15 allows an authenticated admin whose access profile has the Security Fabric permission to escalate their privileges to super-admin by connecting the...
CVE-2024-40591
creationtimestamp| type| source ---|---|--- 2025-02-11 16:51:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113986285700594891 2025-02-11 17:16:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhw5ydxery2s 2025-02-11 17:45:29+00:00| seen|...
CVE-2024-40591
An incorrect privilege assignment vulnerability CWE-266 in Fortinet FortiOS version 7.6.0, 7.4.0 through 7.4.4, 7.2.0 through 7.2.9 and before 7.0.15 allows an authenticated admin whose access profile has the Security Fabric permission to escalate their privileges to super-admin by connecting the...
CVE-2024-40591
CVE-2024-40591 is a privilege-escalation flaw in Fortinet FortiOS. Affected are FortiOS 7.6.0; 7.4.0–7.4.4; 7.2.0–7.2.9; and versions before 7.0.15. The issue arises from incorrect privilege assignment, allowing an authenticated admin with the Security Fabric permission to escalate to super-admin...
Fortinet Fortigate Permission escalation due to an Improper Privilege Management (FG-IR-24-302)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-302 advisory. - An incorrect privilege assignment vulnerability CWE-266 in Fortinet FortiOS version 7.6.0, 7.4.0 through 7.4.4, 7.2.0 throu...