Fortify SSC 17.10 / 17.20 / 18.10 User Detail Insecure Direct Object Reference
Posted on 13 December 2018
Fortify Software Security Center versions 17.10, 17.20, and 18.10 suffer from an insecure direct object reference vulnerability related to extracting local and ldap users.