CVE-2023-50179
published 2024-07-09CVE-2023-50179: An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2 all versions, 7.1 all versions, 7.0 all versions may allow a remote and…
medium5.9CVSS 3.1
AVNACHPRNUINSUCHINAN
An improper certificate validation vulnerability [CWE-295] in FortiADC 7.4.0, 7.2 all versions, 7.1 all versions, 7.0 all versions may allow a remote and unauthenticated attacker to perform a Man-in-the-Middle attack on the communication channel between the device and public SDN connectors.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | >= 7.0.0 < 7.4.1 | 7.4.1 |
| fortinet | fortiadc | 7.0.0 – 7.0.5 | — |
| fortinet | fortiadc | 7.1.0 – 7.1.4 | — |
| fortinet | fortiadc | 7.2.0 – 7.2.6 | — |