CVE-2021-42758
08.12.2021, 11:15
An improper access control vulnerability [CWE-284] in FortiWLC 8.6.1 and below may allow an authenticated and remote attacker with low privileges to execute any command as an admin user with full access rights via bypassing the GUI restrictions.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| fortinet | fortiwlc | 8.2.4 ≤ 𝑥 ≤ 8.2.7 |
| fortinet | fortiwlc | 8.3.0 ≤ 𝑥 ≤ 8.3.3 |
| fortinet | fortiwlc | 8.5.0 ≤ 𝑥 ≤ 8.5.5 |
| fortinet | fortiwlc | 8.0.5 |
| fortinet | fortiwlc | 8.0.6 |
| fortinet | fortiwlc | 8.1.2 |
| fortinet | fortiwlc | 8.1.3 |
| fortinet | fortiwlc | 8.4.0 |
| fortinet | fortiwlc | 8.4.1 |
| fortinet | fortiwlc | 8.4.2 |
| fortinet | fortiwlc | 8.4.4 |
| fortinet | fortiwlc | 8.4.5 |
| fortinet | fortiwlc | 8.4.6 |
| fortinet | fortiwlc | 8.4.7 |
| fortinet | fortiwlc | 8.4.8 |
| fortinet | fortiwlc | 8.6.0 |
| fortinet | fortiwlc | 8.6.1 |
𝑥
= Vulnerable software versions