How severe is CVE-2023-23779?

CVE-2023-23779 has a CVSS v3 score of 6.8 (MEDIUM).

CVE-2023-23779

Name: fortiweb
Author: fortinet

6.8MEDIUM

Multiple improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerabilities [CWE-78] in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.19 and b

发布于: 2/16/2023更新于: 11/21/2024

描述

Multiple improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerabilities [CWE-78] in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.19 and below may allow an authenticated attacker to execute unauthorized code or commands via crafted parameters of HTTP requests.

AI分析AI驱动

受影响产品

fortinetfortiweb

6.4.0

fortinetfortiweb

6.4.1

fortinetfortiweb

6.4.2

fortinetfortiweb

7.0.0

fortinetfortiweb

7.0.1

参考资料

https://fortiguard.com/psirt/FG-IR-22-133
Product
https://fortiguard.com/psirt/FG-IR-22-133
Product