CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-48783

An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7.2.1 and below, version 7.0.6 and below, version 6.0.14 and below, version 5.3.8 and below may allow a remote authenticated user with at least read-only permissions to access to other organization endpoints via crafted GET requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.6%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2023-48783

Fortinet » Fortiportal » Version: 5.3.0

cpe:2.3:a:fortinet:fortiportal:5.3.0
Fortinet » Fortiportal » Version: 5.3.1

cpe:2.3:a:fortinet:fortiportal:5.3.1
Fortinet » Fortiportal » Version: 5.3.2

cpe:2.3:a:fortinet:fortiportal:5.3.2
Fortinet » Fortiportal » Version: 5.3.3

cpe:2.3:a:fortinet:fortiportal:5.3.3
Fortinet » Fortiportal » Version: 5.3.4

cpe:2.3:a:fortinet:fortiportal:5.3.4
Fortinet » Fortiportal » Version: 5.3.5

cpe:2.3:a:fortinet:fortiportal:5.3.5
Fortinet » Fortiportal » Version: 5.3.6

cpe:2.3:a:fortinet:fortiportal:5.3.6
Fortinet » Fortiportal » Version: 5.3.7

cpe:2.3:a:fortinet:fortiportal:5.3.7
Fortinet » Fortiportal » Version: 5.3.8

cpe:2.3:a:fortinet:fortiportal:5.3.8
Fortinet » Fortiportal » Version: 6.0.0

cpe:2.3:a:fortinet:fortiportal:6.0.0
Fortinet » Fortiportal » Version: 6.0.1

cpe:2.3:a:fortinet:fortiportal:6.0.1
Fortinet » Fortiportal » Version: 6.0.10

cpe:2.3:a:fortinet:fortiportal:6.0.10
Fortinet » Fortiportal » Version: 6.0.11

cpe:2.3:a:fortinet:fortiportal:6.0.11
Fortinet » Fortiportal » Version: 6.0.12

cpe:2.3:a:fortinet:fortiportal:6.0.12
Fortinet » Fortiportal » Version: 6.0.13

cpe:2.3:a:fortinet:fortiportal:6.0.13
Fortinet » Fortiportal » Version: 6.0.14

cpe:2.3:a:fortinet:fortiportal:6.0.14
Fortinet » Fortiportal » Version: 6.0.2

cpe:2.3:a:fortinet:fortiportal:6.0.2
Fortinet » Fortiportal » Version: 6.0.3

cpe:2.3:a:fortinet:fortiportal:6.0.3
Fortinet » Fortiportal » Version: 6.0.4

cpe:2.3:a:fortinet:fortiportal:6.0.4
Fortinet » Fortiportal » Version: 6.0.5

cpe:2.3:a:fortinet:fortiportal:6.0.5
Fortinet » Fortiportal » Version: 6.0.6

cpe:2.3:a:fortinet:fortiportal:6.0.6
Fortinet » Fortiportal » Version: 6.0.7

cpe:2.3:a:fortinet:fortiportal:6.0.7
Fortinet » Fortiportal » Version: 6.0.8

cpe:2.3:a:fortinet:fortiportal:6.0.8
Fortinet » Fortiportal » Version: 6.0.9

cpe:2.3:a:fortinet:fortiportal:6.0.9
Fortinet » Fortiportal » Version: 7.0.0

cpe:2.3:a:fortinet:fortiportal:7.0.0
Fortinet » Fortiportal » Version: 7.0.1

cpe:2.3:a:fortinet:fortiportal:7.0.1
Fortinet » Fortiportal » Version: 7.0.2

cpe:2.3:a:fortinet:fortiportal:7.0.2
Fortinet » Fortiportal » Version: 7.0.3

cpe:2.3:a:fortinet:fortiportal:7.0.3
Fortinet » Fortiportal » Version: 7.0.4

cpe:2.3:a:fortinet:fortiportal:7.0.4
Fortinet » Fortiportal » Version: 7.0.5

cpe:2.3:a:fortinet:fortiportal:7.0.5
Fortinet » Fortiportal » Version: 7.0.6

cpe:2.3:a:fortinet:fortiportal:7.0.6
Fortinet » Fortiportal » Version: 7.2.0

cpe:2.3:a:fortinet:fortiportal:7.2.0
Fortinet » Fortiportal » Version: 7.2.1

cpe:2.3:a:fortinet:fortiportal:7.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-48783

Products

Pricing

Contact Us