Home
HIGH: 7.7 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L/E:P/RL:O/RC:CDefault status
unaffected
5.0.0 (semver)
affected
4.4.3 (semver)
affected
Description
A exposure of resource to wrong sphere vulnerability in Fortinet FortiSandbox 5.0.0 through 5.0.2, FortiSandbox 4.4.3 through 4.4.8 may allow an unauthenticated attacker to access the VNC server of VMs performing scanning via network requests.
Problem types
Product status
5.0.0 (semver)
4.4.3 (semver)
References
fortiguard.fortinet.com/psirt/FG-IR-26-145