Description
Fortinet products FortiOS, FortiProxy, FortiSwitchManager are vulnerable to an authentication bypass vulnerability that allows an unauthenticated attacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.
The flaw affects the following versions:
Remediation
Please upgrade to FortiOS version 7.2.2 or above
Please upgrade to FortiOS version 7.0.7 or above
Please upgrade to FortiProxy version 7.2.1 or above
Please upgrade to FortiProxy version 7.0.7 or above
Please upgrade to FortiSwitchManager version 7.2.1 or above
References
Related Vulnerabilities
WordPress Plugin Analytics Remote Code Execution (1.7)
WordPress Plugin Profile Builder-User Profile & User Registration Forms Security Bypass (1.1.59)
Oracle Reports rwservlet vulnerabilities
WordPress Plugin Secure File Manager Remote Code Execution (2.8.1)
WordPress Plugin PayPal for WooCommerce Security Bypass (1.5.7)