Vulnerabilities > CVE-2024-27784 - Unspecified vulnerability in Fortinet Fortiaiops 2.0.0

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

fortinet

NVD

Published: 2024-07-09

Updated: 2024-11-21

Summary

Multiple Exposure of sensitive information to an unauthorized actor vulnerabilities [CWE-200] in FortiAIOps version 2.0.0 may allow an authenticated, remote attacker to retrieve sensitive information from the API endpoint or log files.

Vulnerable Configurations

Part	Description	Count
Application	Fortinet Fortinet Fortiaiops 2.0.0	1

References

https://fortiguard.fortinet.com/psirt/FG-IR-24-072
https://fortiguard.fortinet.com/psirt/FG-IR-24-072