CVE-2023-44252

Name of the Vulnerable Software and Affected Versions FortiWAN versions 5.1.1 through 5.1.2 FortiWAN versions 5.2.0 through 5.2.1

Description The issue is related to improper authentication in FortiWAN, stemming from the use of a static key when handling JWT tokens. This can be exploited by a remote attacker to escalate privileges by sending specially crafted HTTP or HTTPS requests with manipulated JWT token values.

Recommendations For FortiWAN versions 5.1.1 through 5.1.2, consider disabling the use of JWT tokens until a patch is available. For FortiWAN versions 5.2.0 through 5.2.1, restrict access to HTTP and HTTPS requests that utilize JWT token values to minimize the risk of exploitation. As a temporary workaround, avoid using crafted JWT token values in HTTP or HTTPS requests until the issue is resolved.