FortiClient EMS - SAML SSO replay attack

2021-12-0700:00:00

FortiGuard Labs

www.fortiguard.com

0.001 Low

EPSS

Percentile

51.2%

JSON

An authentication bypass by capture-replay vulnerability [CWE-294] in FortiClient EMS may allow an unauthenticated attacker to impersonate an existing user by intercepting and re-using valid SAML authentication messages.

CPENameOperatorVersion
forticlientemseq7.0.1
forticlientemseq7.0.0
forticlientemseq6.4.4
forticlientemseq6.4.3
forticlientemseq6.4.2
forticlientemseq6.4.1
forticlientemseq6.4.0
forticlientemseq6.2.9
forticlientemseq6.2.8
forticlientemseq6.2.7

Name	Operator	Version
forticlientems	eq	7.0.1
forticlientems	eq	7.0.0
forticlientems	eq	6.4.4
forticlientems	eq	6.4.3
forticlientems	eq	6.4.2
forticlientems	eq	6.4.1
forticlientems	eq	6.4.0
forticlientems	eq	6.2.9
forticlientems	eq	6.2.8
forticlientems	eq	6.2.7

Rows per page:

1-10 of 161

0.001 Low

EPSS

Percentile

51.2%

JSON

Related for FG-IR-21-192