A null pointer dereference in Fortinet FortiOS before 7.2.5 and before 7.0.11, FortiProxy before 7.2.3 and before 7.0.9 allows attacker to denial of sslvpn service via specifically crafted request in network parameter.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/258201 | Third Party Advisory |
https://fortiguard.com/psirt/FG-IR-23-015 | Not Applicable |
Configurations
Configuration 1 (hide)
|
History
23 Jun 2023, 21:27
Type | Values Removed | Values Added |
---|---|---|
First Time |
Fortinet fortios
Fortinet fortiproxy Fortinet |
|
CPE | cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:* cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:* |
|
CWE | CWE-476 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
References |
|
|
References | (MISC) https://fortiguard.com/psirt/FG-IR-23-015 - Not Applicable |
16 Jun 2023, 12:47
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-16 10:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-33307
Mitre link : CVE-2023-33307
CVE.ORG link : CVE-2023-33307
JSON object : View
Products Affected
fortinet
- fortiproxy
- fortios
CWE
CWE-476
NULL Pointer Dereference