CVE-2020-6641

Name of the Vulnerable Software and Affected Versions: Fortinet FortiPresence version 2.1.0

Description: The issue concerns authorization bypass vulnerabilities in the administration interface, potentially allowing attackers to access user data. This can be achieved through user-controlled key vulnerabilities, specifically via portal manager or portal users parameters.

Recommendations: For Fortinet FortiPresence version 2.1.0, consider restricting access to the administration interface until a fix is available. As a temporary workaround, limit the use of portal manager and portal users parameters to minimize the risk of exploitation.