all InfoSec news
Multiple Vulnerabilities in Fortinet FortiSIEM Could Allow for Remote Code Execution
Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org
Multiple vulnerabilities have been discovered in Fortinet FortiSIEM which could allow for remote code execution. FortiSIEM is a multi-tenant SIEM that offers real-time infrastructure and user awareness for precise threat detection, analysis, and reporting. Successful exploitation could allow for remote code execution in the context of the affected service account. Depending on the privileges associated with the service account an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Service accounts …
analysis awareness code code execution context detection exploitation fortinet fortisiem infrastructure multi-tenant real remote code remote code execution reporting service siem threat threat detection user awareness vulnerabilities