CVE-2023-41679

Name of the Vulnerable Software and Affected Versions FortiManager versions 6.0 through 7.2.2

Description The issue is related to improper access control in the FortiManager management interface. This can allow a remote and authenticated attacker with at least "device management" permission on their profile and belonging to a specific ADOM to add and delete CLI scripts on other ADOMs.

Recommendations For FortiManager versions 6.0 through 7.2.2, consider restricting access to the management interface to minimize the risk of exploitation. As a temporary workaround, limit the "device management" permission to only necessary profiles and ADOMs until a patch is available. Restrict the ability to add and delete CLI scripts on other ADOMs to prevent unauthorized changes.