Vulnerability CVE-2023-44253


Published: 2024-02-15

Description:
An exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiManager version 7.4.0 through 7.4.1 and before 7.2.5, FortiAnalyzer version 7.4.0 through 7.4.1 and before 7.2.5 and FortiAnalyzer-BigData before 7.2.5 allows an adom administrator to enumerate other adoms and device names via crafted HTTP or HTTPS requests.

Type:

CWE-200

(Information Exposure)

 References:
https://fortiguard.com/psirt/FG-IR-23-268

Copyright 2026, cxsecurity.com

 

Back to Top