4 matches found
CVE-2024-21757
A unverified password change in Fortinet FortiManager versions 7.0.0 through 7.0.10, versions 7.2.0 through 7.2.4, and versions 7.4.0 through 7.4.1, as well as Fortinet FortiAnalyzer versions 7.0.0 through 7.0.10, versions 7.2.0 through 7.2.4, and versions 7.4.0 through 7.4.1, allows an attacker ...
CVE-2024-21757
A unverified password change in Fortinet FortiManager versions 7.0.0 through 7.0.10, versions 7.2.0 through 7.2.4, and versions 7.4.0 through 7.4.1, as well as Fortinet FortiAnalyzer versions 7.0.0 through 7.0.10, versions 7.2.0 through 7.2.4, and versions 7.4.0 through 7.4.1, allows an attacker ...
CVE-2024-21757
CVE-2024-21757 affects Fortinet FortiManager and FortiAnalyzer. The issue enables an attacker to change admin passwords via a device configuration backup due to an unverified password change. Affected: FortiManager 7.0.0–7.0.10, 7.2.0–7.2.4, 7.4.0–7.4.1; FortiAnalyzer 7.0.0–7.0.10, 7.2.0–7.2.4, 7...
CVE-2016-4967
Fortinet FortiWan formerly AscernLink before 4.2.5 allows remote authenticated users to obtain sensitive information from 1 a backup of the device configuration via script/cfgshow.php or 2 PCAP files via script/system/tcpdump.php...