CVE-2024-45331 Information

Description

A incorrect privilege assignment in Fortinet FortiAnalyzer versions 7.4.0 through 7.4.3 7.2.0 through 7.2.5 7.0.0 through 7.0.13 6.4.0 through 6.4.15 FortiManager versions 7.4.0 through 7.4.2 7.2.0 through 7.2.5 7.0.0 through 7.0.13 6.4.0 through 6.4.15 FortiAnalyzer Cloud versions 7.4.1 through 7.4.2 7.2.1 through 7.2.6 7.0.1 through 7.0.13 6.4.1 through 6.4.7 allows attacker to escalate privilege via specific shell commands

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-127