CVE-2024-45323

Name of the Vulnerable Software and Affected Versions: FortiEDR Manager API versions 6.0 through 6.2.2

Description: The issue is related to improper access control, allowing an authenticated admin with REST API permissions, restricted to a specific organization, to access backend logs that include information related to other organizations in a shared environment context. This may enable a remote attacker to gain access to confidential information.

Recommendations: For FortiEDR Manager API versions 6.0 through 6.2.2, consider restricting access to the backend logs to prevent unauthorized access to confidential information until a patch is available. As a temporary workaround, consider disabling the REST API permissions for admins restricted to a specific organization to minimize the risk of exploitation.