FortiAuthenticator - Improper access control in HA service
An improper access control vulnerability [CWE-284] in FortiAuthenticator HA service may allow an attacker on the same vlan as the HA management interface to make an unauthenticated direct connection to the FAC's database.
FortiAuthenticator 6.3.2 and below.
Please upgrade to FortiAuthenticator 6.4.0 or above.
Please upgrade to FortiAuthenticator 6.3.3 or above.