CVE-2023-29178
4.3MEDIUMA access of uninitialized pointer vulnerability [CWE-824] in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9 and FortiOS version 7.2.0 through 7.2.4 and before 7.0.11 allows an authe
Veröffentlicht: 6/13/2023Aktualisiert: 11/21/2024
Beschreibung
A access of uninitialized pointer vulnerability [CWE-824] in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9 and FortiOS version 7.2.0 through 7.2.4 and before 7.0.11 allows an authenticated attacker to repetitively crash the httpsd process via crafted HTTP or HTTPS requests.
KI-AnalyseKI-gestützt
Betroffene Produkte
fortinetfortiproxy
fortinetfortiproxy
fortinetfortiproxy
fortinetfortiproxy
fortinetfortiproxy
7.2.0
fortinetfortiproxy
7.2.1
fortinetfortiproxy
7.2.2
fortinetfortiproxy
7.2.3
fortinetfortios
fortinetfortios
fortinetfortios
fortinetfortios
fortinetfortios
Referenzen
- https://fortiguard.com/psirt/FG-IR-23-095Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-23-095Vendor Advisory