CVE-2023-45584
6.6MEDIUMA double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM
Publicado: 8/12/2025Actualizado: 1/14/2026
Descripción
A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.1, FortiProxy 7.2.0 through 7.2.7, FortiProxy 7.0.0 through 7.0.13 allows a privileged attacker to execute code or commands via crafted HTTP or HTTPs requests.
Análisis IAImpulsado por IA
Productos Afectados
fortinetfortios
fortinetfortios
fortinetfortios
7.4.0
fortinetfortipam
fortinetfortiproxy
fortinetfortiproxy
fortinetfortiproxy
Referencias
- https://fortiguard.fortinet.com/psirt/FG-IR-23-209Vendor Advisory