How severe is CVE-2023-45584?

CVE-2023-45584 has a CVSS v3 score of 6.6 (MEDIUM).

CVE-2023-45584

6.6MEDIUM

A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM

Published: 8/12/2025Updated: 1/14/2026

Description

A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.1, FortiProxy 7.2.0 through 7.2.7, FortiProxy 7.0.0 through 7.0.13 allows a privileged attacker to execute code or commands via crafted HTTP or HTTPs requests.

AI AnalysisPowered by AI

Affected Products

fortinetfortios

7.4.0

fortinetfortipam

fortinetfortiproxy

References

https://fortiguard.fortinet.com/psirt/FG-IR-23-209
Vendor Advisory