CVE-2023-40721
6.7MEDIUMA use of externally-controlled format string vulnerability [CWE-134] vulnerability in Fortinet allows a privileged attacker to execute arbitrary code or commands via specially crafted requests.
Publicado: 2/11/2025Atualizado: 1/14/2026
Descrição
A use of externally-controlled format string vulnerability [CWE-134] vulnerability in Fortinet allows a privileged attacker to execute arbitrary code or commands via specially crafted requests.
Análise IADesenvolvido por IA
Produtos Afetados
fortinetfortios
fortinetfortios
fortinetfortios
7.4.0
fortinetfortiswitchmanager
fortinetfortiswitchmanager
fortinetfortiproxy
fortinetfortiproxy
fortinetfortiproxy
7.4.0
fortinetfortipam
Referências
- https://fortiguard.com/psirt/FG-IR-23-261Vendor Advisory