How severe is CVE-2023-44250?

CVE-2023-44250 has a CVSS v3 score of 8.8 (HIGH).

CVE-2023-44250

Name: fortios
Author: fortinet

8.8HIGH

An improper privilege management vulnerability [CWE-269] in a Fortinet FortiOS HA cluster version 7.4.0 through 7.4.1 and 7.2.5 and in a FortiProxy HA cluster version 7.4.0 through 7.4.1 allows an aut

发布于: 1/10/2024更新于: 11/21/2024

描述

An improper privilege management vulnerability [CWE-269] in a Fortinet FortiOS HA cluster version 7.4.0 through 7.4.1 and 7.2.5 and in a FortiProxy HA cluster version 7.4.0 through 7.4.1 allows an authenticated attacker to perform elevated actions via crafted HTTP or HTTPS requests.

AI分析AI驱动

受影响产品

fortinetfortiproxy

7.4.0

fortinetfortiproxy

7.4.1

fortinetfortios

7.2.5

fortinetfortios

7.4.0

fortinetfortios

7.4.1

参考资料

https://fortiguard.com/psirt/FG-IR-23-315
Vendor Advisory
https://fortiguard.com/psirt/FG-IR-23-315
Vendor Advisory