FortiSOAR - Improper Authorization in request headers

Summary

An improper access control vulnerability [CWE-284] in FortiSOAR's playbook component may allow an attacker authenticated on the administrative interface to perform unauthorized actions via crafted HTTP requests.

Version Affected Solution
FortiSOAR 7.3 7.3.0 through 7.3.1 Upgrade to 7.3.2 or above