exploitDog

GHSA-3759-qv8m-9cv6

Опубликовано: 09 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.8

Описание

An Incorrect Authorization vulnerability [CWE-863] in FortiPortal 7.4.0 through 7.4.5 may allow an authenticated attacker to reboot a shared FortiGate device via crafted HTTP requests.

An Incorrect Authorization vulnerability [CWE-863] in FortiPortal 7.4.0 through 7.4.5 may allow an authenticated attacker to reboot a shared FortiGate device via crafted HTTP requests.

Ссылки

EPSS

Процентиль: 6%

0.00023

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2025-54838

CVSS3: 6.8

nvd

2 месяца назад

An Incorrect Authorization vulnerability [CWE-863] in FortiPortal 7.4.0 through 7.4.5 may allow an authenticated attacker to reboot a shared FortiGate device via crafted HTTP requests.

EPSS

Процентиль: 6%

0.00023

Низкий

6.8 Medium

CVSS3

CVE ID

Дефекты

CWE-863