CVE-2016-4573

Name of the Vulnerable Software and Affected Versions Fortinet FortiSwitch versions 3.4.1

Description The issue allows remote attackers to bypass authentication and gain administrative access via an empty password for the rest admin account when the FortiSwitch models are in FortiLink managed mode.

Recommendations For version 3.4.1, consider disabling the rest admin account until a patch is available to prevent potential exploitation. Restrict access to the administrative interface to minimize the risk of unauthorized access.