Fortinet · Fortiswitch · CVE-2016-4573
**Name of the Vulnerable Software and Affected Versions**
Fortinet FortiSwitch versions 3.4.1
**Description**
The issue allows remote attackers to bypass authentication and gain administrative access via an empty password for the `rest admin` account when the FortiSwitch models are in FortiLink managed mode.
**Recommendations**
For version 3.4.1, consider disabling the `rest admin` account until a patch is available to prevent potential exploitation. Restrict access to the administrative interface to minimize the risk of unauthorized access.