CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-26088

An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.055

EPSS Ranking 89.8%

CVSS Severity

CVSS v3 Score 7.1

CVSS v2 Score 5.8

References

https://fortiguard.com/advisory/FG-IR-20-191
https://fortiguard.com/advisory/FG-IR-20-191

Products affected by CVE-2021-26088

Fortinet » Fortinet Single Sign-On » Version: Any

cpe:2.3:a:fortinet:fortinet_single_sign-on:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-26088

Products

Pricing

Contact Us