Hard-coded 'upgrade' Account Vulnerability in Fortinet FortiWLM 8.3.0 and Lower Versions

Hard-coded 'upgrade' Account Vulnerability in Fortinet FortiWLM 8.3.0 and Lower Versions

CVE-2017-7336 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0 and lower versions allows a remote attacker to log-in and execute commands with 'upgrade' account privileges.

Learn more about our Cis Benchmark Audit For Fortinet.