FortiWeb - Unauthorized user is granted access to the Reports available in the Log & Report section
An improper access control vulnerability [CWE-284] in the Report Browse section of FortiWeb's Log & Report may allow an unauthorized and unauthenticated user to access the Log reports via their URLs.
FortiWeb version 6.4.1 and below.
FortiWeb version 6.3.15 and below.
Please upgrade to FortiWeb version 7.0.0 or above.
Please upgrade to FortiWeb version 6.4.2 or above.
Please upgrade to FortiWeb version 6.3.16 or above.