CVE-2021-36166

Name of the Vulnerable Software and Affected Versions FortiMail versions prior to 7.0.1

Description The issue is related to an improper authentication mechanism in the system, which may allow a remote attacker to guess an administrative account's authentication token by observing certain system properties. This could potentially lead to unauthorized access.

Recommendations For FortiMail versions prior to 7.0.1, update to version 7.0.1 or later to resolve the issue. As a temporary workaround, consider restricting access to administrative accounts and monitoring system activity for suspicious behavior.