#VU60217 Improper access control in FortiAuthenticator
Vulnerability identifier: #VU60217
Vulnerability risk: Low
CVSSv3.1: 3.7 [CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-284
Exploitation vector: Local network
Exploit availability: No
Vulnerable software:
FortiAuthenticator
Client/Desktop applications /
Other client software
Vendor: Fortinet, Inc
Description
The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions in FortiAuthenticator HA service. A remote attacker on the same VLAN as the HA management interface can make an unauthenticated direct connection to the FAC's database.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
FortiAuthenticator: 6.0.0 - 6.3.2
External links
http://fortiguard.fortinet.com/psirt/FG-IR-20-217
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
