How severe is CVE-2023-42782?

CVE-2023-42782 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2023-42782

Name: fortianalyzer
Author: fortinet

5.3MEDIUM

A insufficient verification of data authenticity vulnerability [CWE-345] in FortiAnalyzer version 7.4.0 and below 7.2.3 allows a remote unauthenticated attacker to send messages to the syslog server o

Publicado: 10/10/2023Actualizado: 11/21/2024

Descripción

A insufficient verification of data authenticity vulnerability [CWE-345] in FortiAnalyzer version 7.4.0 and below 7.2.3 allows a remote unauthenticated attacker to send messages to the syslog server of FortiAnalyzer via the knoweldge of an authorized device serial number.

Análisis IAImpulsado por IA

Productos Afectados

fortinetfortianalyzer

7.4.0

Referencias

https://fortiguard.com/psirt/FG-IR-23-221
Vendor Advisory
https://fortiguard.com/psirt/FG-IR-23-221
Vendor Advisory