How severe is CVE-2023-42782?

CVE-2023-42782 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2023-42782

Name: fortianalyzer
Author: fortinet

5.3MEDIUM

A insufficient verification of data authenticity vulnerability [CWE-345] in FortiAnalyzer version 7.4.0 and below 7.2.3 allows a remote unauthenticated attacker to send messages to the syslog server o

Published: 10/10/2023Updated: 11/21/2024

Description

A insufficient verification of data authenticity vulnerability [CWE-345] in FortiAnalyzer version 7.4.0 and below 7.2.3 allows a remote unauthenticated attacker to send messages to the syslog server of FortiAnalyzer via the knoweldge of an authorized device serial number.

AI AnalysisPowered by AI

Affected Products

fortinetfortianalyzer

7.4.0

References

https://fortiguard.com/psirt/FG-IR-23-221
Vendor Advisory
https://fortiguard.com/psirt/FG-IR-23-221
Vendor Advisory