Fortiauthenticator
1 CVEs
product
Monthly
FortiAuthenticator 6.3 through 6.6.6 allows read-only users to modify local user accounts by uploading files to an unprotected endpoint, bypassing authorization controls. This vulnerability requires high privileges to initiate but could enable unauthorized account modifications in affected deployments. No patch is currently available for this high-severity flaw.
Fortinet
Fortiauthenticator
NVD
CVSS 3.1
7.2
EPSS
0.0%
CVE-2026-21743
EPSS 0%
CVSS 7.2
HIGH
This Week
FortiAuthenticator 6.3 through 6.6.6 allows read-only users to modify local user accounts by uploading files to an unprotected endpoint, bypassing authorization controls. This vulnerability requires high privileges to initiate but could enable unauthorized account modifications in affected deployments. No patch is currently available for this high-severity flaw.
Fortinet
Fortiauthenticator
NVD