Fortinet FortiAnalyzer Privilege Licensing and Access Control Issues Vulnerability

Fortinet FortiAnalyzer is a centralized network security reporting solution from Fortinet (USA). The product is used to collect network log data and analyze, report, and archive security events, network traffic, and Web content in the logs through the reporting suite.Fortinet FortiAnalyzer is vulnerable to an access control error that results from a network system or product not properly restricting access to resources from unauthorized roles. An attacker could use this vulnerability to bypass device policies and force its users to perform a password change operation.