CVE-2023-44252 Information

Description

UNSUPPORTED WHEN ASSIGNED An improper authentication vulnerability [CWE-287] in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1 through 5.1.2 may allow an authenticated attacker to escalate his privileges via HTTP or HTTPs requests with crafted JWT token values.

Reference

https://fortiguard.com/psirt/FG-IR-23-061