Impr Auth on FortiSOAR 7.4.x Change-Pass: Brute Force Risk
CVE-2024-45327 Published on September 11, 2024
An improper authorization vulnerability [CWE-285] in FortiSOAR version 7.4.0 through 7.4.3, 7.3.0 through 7.3.2, 7.2.0 through 7.2.2, 7.0.0 through 7.0.3 change password endpoint may allow an authenticated attacker to perform a brute force attack on users and administrators password via crafted HTTP requests.
Vulnerability Analysis
CVE-2024-45327 can be exploited with network access, and requires small amount of user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.
Weakness Type
Improper Restriction of Excessive Authentication Attempts
The software does not implement sufficient measures to prevent multiple failed authentication attempts within in a short time frame, making it more susceptible to brute force attacks.
Products Associated with CVE-2024-45327
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-45327 are published in Fortinet Fortisoar:
Affected Versions
Fortinet FortiSOAR:- Version 7.4.0, <= 7.4.3 is affected.
- Version 7.3.0, <= 7.3.2 is affected.
- Version 7.2.0, <= 7.2.2 is affected.
- Version 7.0.0, <= 7.0.3 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.