CVE-2024-45329 Information

Jun 11, 2025 cve

Description

A authorization bypass through user-controlled key in Fortinet FortiPortal versions 7.4.0 versions 7.2.0 through 7.2.5 and versions 7.0.0 through 7.0.8 may allow an authenticated attacker to view unauthorized device information via key modification in API requests.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-274

Share on: