CVE-2023-48789 Information

Description

A client-side enforcement of server-side security in Fortinet FortiPortal version 6.0.0 through 6.0.14 allows attacker to improper access control via crafted HTTP requests.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-23-406