Lucene search
FortiGuard LabsFG-IR-22-346HistoryFeb 16, 2023 - 12:00 a.m.
Protect
2023-02-1600:00:00
FortiGuard Labs
www.fortiguard.com
32
fortios
fortiproxy
privilege management
vulnerability
administrator
cli
gui commands
cwe-269
system subsection
modify profile
upgrade privileges
EPSS
0
Percentile
13.2%
An improper privilege management vulnerability [CWE-269] in FortiOS & FortiProxy may allow an administrator that has access to the admin profile section (System subsection Administrator Users) to modify their own profile and upgrade their privileges to Read Write via CLI or GUI commands.
Related
nessus
nessus
cvelist
cvelist
CVE-2022-38378
2023-02-16 18:06:36
cve
cve
CVE-2022-38378
2023-02-16 19:15:12
prion
prion
Privilege escalation
2023-02-16 19:15:00
nvd
nvd
CVE-2022-38378
2023-02-16 19:15:12