On 12 May 2023, Horizon3 researcher Zach Hanley found an unauthenticated limited file read vulnerability in FortiWLM that he promptly disclosed to Fortinet. On 18 December 2024, it was given a name—CVE-2023-34990—and Fortinet released an advisory warning users of its severity. This flaw brought with it a critical CVSS rating of 9.8, allowing unauthenticated attackers […]
The post CVE-2023-34990: Critical Path Traversal Flaw Found in Fortinet FortiWLM appeared first on SecPod Blog.