How severe is CVE-2023-48786?

CVE-2023-48786 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2023-48786

Name: forticlientems
Author: fortinet

4.3MEDIUM

A server-side request forgery vulnerability [CWE-918] in Fortinet FortiClientEMS version 7.4.0 through 7.4.2 and before 7.2.6 may allow an authenticated attacker to perform internal requests via craft

Publicado: 6/10/2025Atualizado: 7/16/2025

Descrição

A server-side request forgery vulnerability [CWE-918] in Fortinet FortiClientEMS version 7.4.0 through 7.4.2 and before 7.2.6 may allow an authenticated attacker to perform internal requests via crafted HTTP or HTTPS requests.

Análise IADesenvolvido por IA

Produtos Afetados

fortinetforticlientems

Referências

https://fortiguard.fortinet.com/psirt/FG-IR-23-342
Vendor Advisory