{"uuid": "5e734950-e6be-41c0-87e0-a7a3f7f8c59d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-35277", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1765", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-35277\n\ud83d\udd39 Description: A missing authentication for critical function in Fortinet FortiPortal version 6.0.0 through 6.0.15, FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14 allows attacker to access to the configuration of the managed devices by sending specifically crafted packets\n\ud83d\udccf Published: 2025-01-14T14:09:54.348Z\n\ud83d\udccf Modified: 2025-01-15T14:56:56.325Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-24-135", "creation_timestamp": "2025-01-15T15:10:39.000000Z"}