CVE-2021-22128 – An improper access control vulnerability in FortiProxy SSL VPN portal 2.0.0, 1.2.9 and bel …

Vuln ID: CVE-2021-22128

Published:  2021-03-04  18:15:13Z

Description: An improper access control vulnerability in FortiProxy SSL VPN portal 2.0.0, 1.2.9 and below versions may allow an authenticated, remote attacker to access internal service such as the ZebOS Shell on the FortiProxy appliance through the Quick Connection functionality.

Source: NVD.NIST.GOV

 


Date:

Categorie(s):

Tag(s):