A concurrent execution using shared resource with improper Synchronization vulnerability (‘Race Condition’) in the customer database interface of FortiPortal before 6.0.6 may allow an authenticated, low-privilege user to bring the underlying database data into an inconsistent state via specific coordination of web requests.
CPE | Name | Operator | Version |
---|---|---|---|
fortiportal | ge | 4.0.0 | |
fortiportal | lt | 6.0.6 |