Fortiswitch
1 CVEs
product
Monthly
A unverified password change vulnerability in Fortinet FortiSwitch GUI may allow a remote unauthenticated attacker to change admin passwords via a specially crafted request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Fortinet
Fortiswitch
NVD
CVSS 3.1
9.8
EPSS
0.4%
CVE-2024-48887
EPSS 0%
CVSS 9.8
CRITICAL
Act Now
A unverified password change vulnerability in Fortinet FortiSwitch GUI may allow a remote unauthenticated attacker to change admin passwords via a specially crafted request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Information Disclosure
Fortinet
Fortiswitch
NVD