CVE-2017-17544

EPSS 1.7%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 1.7%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

09 Apr 2019Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A privilege escalation vulnerability in Fortinet FortiOS 6.0.0 to 6.0.6, 5.6.0 to 5.6.10, 5.4 and below allows admin users to elevate their profile to super_admin via restoring modified configurations.

Affected products

Fortinet · FortiOS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://fortiguard.com/advisory/FG-IR-17-053 http://www.securityfocus.com/bid/107839