CVE-2023-44252
CVSS V2 None
CVSS V3 None
Description
** UNSUPPORTED WHEN ASSIGNED **An improper authentication vulnerability [CWE-287] in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1 through 5.1.2 may allow an authenticated attacker to escalate his privileges via HTTP or HTTPs requests with crafted JWT token values.
Overview
- CVE ID
- CVE-2023-44252
- Assigner
- fortinet
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-12-13T08:52:59.178Z
- Last Modified Date
- 2023-12-13T08:52:59.178Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://fortiguard.com/psirt/FG-IR-23-061 |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-44252 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44252 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 12:33:33 | Added to TrackCVE |