CVE-2023-48789

Name of the Vulnerable Software and Affected Versions Fortinet FortiPortal versions 6.0.0 through 6.0.14

Description The issue is related to the implementation of client-side security features in Fortinet FortiPortal, allowing a remote attacker to gain unauthorized access to protected information by sending specially crafted HTTP requests. This can lead to improper access control.

Recommendations For Fortinet FortiPortal versions 6.0.0 through 6.0.14, update to a version outside of this range to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.