CVE-2017-7336

CVE-2017-7336

EPSS 2.5%

A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0 and lower versions allows a remote attacker to log-in and execute commands with 'upgrade' account privileges.

Affected products

Fortinet, Inc. · Fortinet FortiWLM

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://fortiguard.com/advisory/FG-IR-17-115 http://www.securityfocus.com/bid/99351