CVE-2024-45326 Information

Description

An Improper Access Control vulnerability [CWE-284] in FortiDeceptor version 6.0.0 version 5.3.3 and below version 5.2.1 and below version 5.1.0 version 5.0.0 may allow an authenticated attacker with none privileges to perform operations on the central management appliance via crafted requests.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-285