An improper access control vulnerability [CWE-284] in FortiIsolator versions 2.3.2 and below may allow an authenticated, non privileged attacker to regenerate the CA certificate via the regeneration URL.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-21-040 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2022-05-04T15:25:10
Updated: 2024-08-04T02:59:30.981Z
Reserved: 2021-09-13T00:00:00
Link: CVE-2021-41020
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-05-04T16:15:08.100
Modified: 2022-07-12T17:42:04.277
Link: CVE-2021-41020
Redhat
No data.