CVE-2024-45323 - FortiEDR Manager API Privilege Escalation

2 months ago 29
ARTICLE AD BOX
CVE ID : CVE-2024-45323
Published : Sept. 10, 2024, 3:15 p.m. | 24 minutes ago
Description : An improper access control vulnerability [CWE-284] in FortiEDR Manager API 6.2.0 through 6.2.2, 6.0 all versions may allow in a shared environment context an authenticated admin with REST API permissions in his profile and restricted to a specific organization to access backend logs that include information related to other organizations.
Severity: 4.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article