Vulnerability CVE-2023-36633
Published: 2023-11-14

Description:
An improper authorization vulnerability [CWE-285] in FortiMail webmail version 7.2.0 through 7.2.2 and before 7.0.5 allows an authenticated attacker to see and modify the title of address book folders of other users via crafted HTTP or HTTPs requests.

 References:
https://fortiguard.com/psirt/FG-IR-23-203
Copyright 2026, cxsecurity.com

 

Back to Top