CVE-2024-23665 Information

Description

Multiple improper authorization vulnerabilities [CWE-285] in FortiWeb version 7.4.2 and below version 7.2.7 and below version 7.0.10 and below version 6.4.3 and below version 6.3.23 and below may allow an authenticated attacker to perform unauthorized ADOM operations via crafted requests.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-23-474