CVE-2023-47543

Name of the Vulnerable Software and Affected Versions Fortinet FortiPortal versions 7.0.0 through 7.0.3

Description The issue is related to an authorization bypass through a user-controlled key, allowing an authenticated attacker to interact with resources of other organizations via HTTP or HTTPS requests. This can be achieved by sending specially crafted requests.

Recommendations For Fortinet FortiPortal versions 7.0.0 through 7.0.3, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.