CVE-2021-26088

Name of the Vulnerable Software and Affected Versions Fortinet Single Sign-On (FSSO) Collector versions 5.0.295 and below

Description The issue is related to an improper authentication mechanism in the FSSO Collector, which can be exploited by a remote attacker to gain access to the protected network. This can be achieved by sending specially crafted UDP login notification packets, potentially allowing an unauthenticated user to bypass the FSSO firewall policy.

Recommendations For versions 5.0.295 and below, consider restricting access to the FSSO Collector until a patch is available, and avoid using the vulnerable authentication mechanism to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.