CVE-2023-42788
CVSS V2 None
CVSS V3 None
Description
An improper neutralization of special elements used in an os command ('OS Command Injection') vulnerability [CWE-78] in FortiManager & FortiAnalyzer version 7.4.0, version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.8, version 6.4.0 through 6.4.12 and version 6.2.0 through 6.2.11 may allow a local attacker with low privileges to execute unauthorized code via specifically crafted arguments to a CLI command
Overview
- CVE ID
- CVE-2023-42788
- Assigner
- fortinet
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-10-10T16:48:56.210Z
- Last Modified Date
- 2023-10-10T16:48:56.210Z
Weakness Enumerations
References
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-42788 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-42788 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-06-25 14:05:20 | Added to TrackCVE |