Fortinet has released a security advisory addressing a critical vulnerability in FortiSwitch products. The vulnerability, identified as CVE-2024-48887 (CVSS 9.3), could allow attackers to gain unauthorized access to affected systems. The advisory highlights an “unverified password change vulnerability [CWE-620] in FortiSwitch GUI“. This flaw may enable “a remote unauthenticated attacker to modify admin passwords via […]
The post Fortinet: Critical Unverified Password Change Flaw in FortiSwitch appeared first on Daily CyberSecurity.