⚠ VulnerabilityFortinet PSIRT·23d ago
Improper access control on API endpoints
CVSSv3 Score: 9.1 An Improper Access Control vulnerability [CWE-284] in FortiAuthenticator may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests. Revised on 2026-05-12 00:00:00
Sign in to read the full article
Create a free account to access all news, downloads, and community features
Originally published by Fortinet PSIRT
Source: https://fortiguard.fortinet.com/psirt/FG-IR-26-128
This article is shared for informational purposes. All rights belong to the original author and publisher. If you are the copyright holder and would like this content removed, please contact us.
Shared on IT-Hub by admin