How severe is CVE-2023-48786?

CVE-2023-48786 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2023-48786

Name: forticlientems
Author: fortinet

4.3MEDIUM

A server-side request forgery vulnerability [CWE-918] in Fortinet FortiClientEMS version 7.4.0 through 7.4.2 and before 7.2.6 may allow an authenticated attacker to perform internal requests via craft

Published: 6/10/2025Updated: 7/16/2025

Description

A server-side request forgery vulnerability [CWE-918] in Fortinet FortiClientEMS version 7.4.0 through 7.4.2 and before 7.2.6 may allow an authenticated attacker to perform internal requests via crafted HTTP or HTTPS requests.

AI AnalysisPowered by AI

Affected Products

fortinetforticlientems

References

https://fortiguard.fortinet.com/psirt/FG-IR-23-342
Vendor Advisory