CVE-2021-26088

HIGH

Fortinet Single Sign-on < 6.4.6 - Authentication Bypass

Title source: rule

Description

An improper authentication vulnerability in FSSO Collector version 5.0.295 and below may allow an unauthenticated user to bypass a FSSO firewall policy and access the protected network via sending specifically crafted UDP login notification packets.

Exploits (1)

nomisec WORKING POC 3 stars

by theogobinet · poc

https://github.com/theogobinet/CVE-2021-26088

View Code ZIP pw:eip

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://fortiguard.com/advisory/FG-IR-20-191

Scores

CVSS v3 7.1

EPSS 0.0548

EPSS Percentile 90.3%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-287

Status published

Products (1)

fortinet/fortinet_single_sign-on < 6.4.6

Published Jul 12, 2021

Tracked Since Feb 18, 2026