A concurrent execution using shared resource with improper Synchronization vulnerability (‘Race Condition’) [CWE-362] in the customer database interface of FortiPortal may allow an authenticated, low-privilege user to bring the underlying database data into an inconsistent state via specific coordination of web requests.
CPE | Name | Operator | Version |
---|---|---|---|
fortiportal | eq | 6.0.5 | |
fortiportal | eq | 6.0.4 | |
fortiportal | eq | 6.0.3 | |
fortiportal | eq | 6.0.2 | |
fortiportal | eq | 6.0.1 | |
fortiportal | eq | 6.0.0 | |
fortiportal | eq | 5.3.6 | |
fortiportal | eq | 5.3.5 | |
fortiportal | eq | 5.3.4 | |
fortiportal | eq | 5.3.3 |