Vulnerabilities > CVE-2021-41020 - Unspecified vulnerability in Fortinet Fortiisolator 2.3.0/2.3.1/2.3.2

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
fortinet

Summary

An improper access control vulnerability [CWE-284] in FortiIsolator versions 2.3.2 and below may allow an authenticated, non privileged attacker to regenerate the CA certificate via the regeneration URL.

Vulnerable Configurations

Part Description Count
Application
Fortinet
3