How severe is CVE-2023-40721?

CVE-2023-40721 has a CVSS v3 score of 6.7 (MEDIUM).

CVE-2023-40721

Name: fortiswitchmanager
Author: fortinet

6.7MEDIUM

A use of externally-controlled format string vulnerability [CWE-134] vulnerability in Fortinet allows a privileged attacker to execute arbitrary code or commands via specially crafted requests.

Published: 2/11/2025Updated: 1/14/2026

Description

A use of externally-controlled format string vulnerability [CWE-134] vulnerability in Fortinet allows a privileged attacker to execute arbitrary code or commands via specially crafted requests.

AI AnalysisPowered by AI

Affected Products

fortinetfortios

7.4.0

fortinetfortiswitchmanager

fortinetfortiproxy

7.4.0

fortinetfortipam

References

https://fortiguard.com/psirt/FG-IR-23-261
Vendor Advisory