CVE-2024-26009
CVE-2024-26009 describes an authentication bypass in Fortinet products (FortiOS, FortiProxy, FortiPAM) exploitable via FGFM requests when the device is managed by FortiManager and the attacker knows the FortiManager serial number. Affected: FortiOS 6.4.0–6.4.15 and before 6.2.16; FortiProxy 7.4.0...