CVE-2020-6649 is a vulnerability in Fortinet Fortiisolator
Published on February 8, 2021

An insufficient session expiration vulnerability in FortiNet's FortiIsolator version 2.0.1 and below may allow an attacker to reuse the unexpired admin user session IDs to gain admin privileges, should the attacker be able to obtain that session ID (via other, hypothetical attacks)

NVD

Products Associated with CVE-2020-6649

Want to know whenever a new CVE is published for Fortinet Fortiisolator? stack.watch will email you.

Fortinet Fortiisolator

Affected Versions

Fortinet FortiIsolator Version FortiIsolator 2.0.1 is affected by CVE-2020-6649

Exploit Probability

EPSS

0.41%

Percentile

60.88%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-6649 is a vulnerability in Fortinet FortiisolatorPublished on February 8, 2021

Products Associated with CVE-2020-6649

Affected Versions

Exploit Probability

CVE-2020-6649 is a vulnerability in Fortinet Fortiisolator
Published on February 8, 2021