CVE-2021-24013
published 2021-07-12CVE-2021-24013: Multiple Path traversal vulnerabilities in the Webmail of FortiMail before 6.4.4 may allow a regular user to obtain unauthorized access to files and data via…
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
Multiple Path traversal vulnerabilities in the Webmail of FortiMail before 6.4.4 may allow a regular user to obtain unauthorized access to files and data via specifically crafted web requests.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortimail | — | — |
| fortinet | fortimail | 5.4.0 – 5.4.12 | — |
| fortinet | fortimail | >= 6.0.0 < 6.0.11 | 6.0.11 |
| fortinet | fortimail | >= 6.2.0 < 6.2.7 | 6.2.7 |
| fortinet | fortimail | >= 6.4.0 < 6.4.4 | 6.4.4 |
| fortinet | fortinet_fortimail | — | — |