Vulnerability Details CVE-2024-45326
An Improper Access Control vulnerability [CWE-284] in FortiDeceptor version 6.0.0, version 5.3.3 and below, version 5.2.1 and below, version 5.1.0, version 5.0.0 may allow an authenticated attacker with none privileges to perform operations on the central management appliance via crafted requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.9%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2024-45326
-
cpe:2.3:a:fortinet:fortideceptor:5.0.0
-
cpe:2.3:a:fortinet:fortideceptor:5.1.0
-
cpe:2.3:a:fortinet:fortideceptor:5.2.0
-
cpe:2.3:a:fortinet:fortideceptor:5.2.1
-
cpe:2.3:a:fortinet:fortideceptor:5.3.0
-
cpe:2.3:a:fortinet:fortideceptor:5.3.1
-
cpe:2.3:a:fortinet:fortideceptor:5.3.2
-
cpe:2.3:a:fortinet:fortideceptor:5.3.3
-
cpe:2.3:a:fortinet:fortideceptor:6.0.0