CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-45328

An incorrect authorization vulnerability [CWE-863] in FortiSandbox 4.4.0 through 4.4.6 may allow a low priviledged administrator to execute elevated CLI commands via the GUI console menu.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.2%

CVSS Severity

CVSS v3 Score 7.8

References

https://fortiguard.fortinet.com/psirt/FG-IR-24-261

Products affected by CVE-2024-45328

Fortinet » Fortisandbox » Version: 4.4.0

cpe:2.3:a:fortinet:fortisandbox:4.4.0
Fortinet » Fortisandbox » Version: 4.4.1

cpe:2.3:a:fortinet:fortisandbox:4.4.1
Fortinet » Fortisandbox » Version: 4.4.2

cpe:2.3:a:fortinet:fortisandbox:4.4.2
Fortinet » Fortisandbox » Version: 4.4.3

cpe:2.3:a:fortinet:fortisandbox:4.4.3
Fortinet » Fortisandbox » Version: 4.4.4

cpe:2.3:a:fortinet:fortisandbox:4.4.4
Fortinet » Fortisandbox » Version: 4.4.5

cpe:2.3:a:fortinet:fortisandbox:4.4.5
Fortinet » Fortisandbox » Version: 4.4.6

cpe:2.3:a:fortinet:fortisandbox:4.4.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-45328

Products

Pricing

Contact Us