Cyber News

Unauthenticated access to local configuration

13/01/2026

CVSSv3 Score: 9.3

An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in FortiFone Web Portal page may allow an unauthenticated attacker to obtain the device configuration via crafted HTTP or HTTPS requests.

Revised on 2026-01-13 00:00:00

– Read more

Monday	08:00 - 17:00
Tuesday	08:00 - 17:00
Wednesday	08:00 - 17:00
Thursday	08:00 - 17:00
Friday	08:00 - 17:00

Unauthenticated access to local configuration

Latest article

Critical bug in popular vm2 Node.js sandboxing library puts projects at risk

$95M Payout: Apple Begins Compensating Users in Siri Eavesdropping Case

Burner phones and lead-lined bags: a history of UK security tactics in China

Patch Tuesday and the Enduring Challenge of Windows’ Backwards Compatibility

EDITOR PICKS

Critical bug in popular vm2 Node.js sandboxing library puts projects at...

$95M Payout: Apple Begins Compensating Users in Siri Eavesdropping Case

Burner phones and lead-lined bags: a history of UK security tactics...

POPULAR POSTS

Threats to users of adult websites in 2018

The World’s Most Popular Coding Language Happens to be Most Hackers’...

IT threat evolution Q2 2019

POPULAR CATEGORY

Critical bug in popular vm2 Node.js sandboxing library puts projects at...

$95M Payout: Apple Begins Compensating Users in Siri Eavesdropping Case

Burner phones and lead-lined bags: a history of UK security tactics...