12Kas
CVE-2024-23666 | Fortinet FortiManager/FortiAnalyzer up to 6.4.14/7.0.11/7.2.4/7.4.1 Requests client-side enforcement of server-side security (FG-IR-23-396)
A vulnerability, which was classified as critical, has been found in Fortinet FortiManager and FortiAnalyzer up to 6.4.14/7.0.11/7.2.4/7.4.1. Affected by this issue is some unknown functionality of the component Requests Handler. The manipulation leads to client-side enforcement of server-side security. This vulnerability is handled as CVE-2024-23666. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.