CVE-2024-27784 Information

Description

Multiple Exposure of sensitive information to an unauthorized actor vulnerabilities [CWE-200] in FortiAIOps version 2.0.0 may allow an authenticated remote attacker to retrieve sensitive information from the API endpoint or log files.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-072