How severe is CVE-2023-45584?

CVE-2023-45584 has a CVSS v3 score of 6.6 (MEDIUM).

CVE-2023-45584

6.6MEDIUM

A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM

发布于: 8/12/2025更新于: 1/14/2026

描述

A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.1, FortiProxy 7.2.0 through 7.2.7, FortiProxy 7.0.0 through 7.0.13 allows a privileged attacker to execute code or commands via crafted HTTP or HTTPs requests.

AI分析AI驱动

受影响产品

fortinetfortios

7.4.0

fortinetfortipam

fortinetfortiproxy

参考资料

https://fortiguard.fortinet.com/psirt/FG-IR-23-209
Vendor Advisory