Improper Authorization in request headers
Summary
An improper access control vulnerability [CWE-284] in FortiSOAR's playbook component may allow an attacker authenticated on the administrative interface to perform unauthorized actions via crafted HTTP requests.
Version | Affected | Solution |
---|---|---|
FortiSOAR 7.3 | 7.3.0 through 7.3.1 | Upgrade to 7.3.2 or above |