CVE-2023-41677 in FortiOSالمعلومات

الملخص

بحسب MITRE • 09/04/2024

A insufficiently protected credentials in Fortinet FortiProxy 7.4.0, 7.2.0 through 7.2.6, 7.0.0 through 7.0.12, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, Fortinet FortiOS 7.4.0 through 7.4.1, 7.2.0 through 7.2.6, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17 allows attacker to execute unauthorized code or commands via targeted social engineering attack

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

Fortinet, Inc.

حجز

30/08/2023

إفشاء

09/04/2024

الاعتدال

تمت الموافقة

إدخال

VDB-259851

CPE

جاهز

CWE

CWE-522 (مؤكد)

CVSS

8.8 (NVD)

EPSS

0.00244

KEV

لا

النشاطات

منخفض جدًا

القطاع

Homeoffice, Hostingprovider, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-41677
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-41677
CVE Details	https://www.cvedetails.com/cve/CVE-2023-41677/

التالي ▸نظرة عامة ◂ السابق

Might our Artificial Intelligence support you?

Check our Alexa App!