A protection mechanism failure in Fortinet FortiWeb 7.2.0 through 7.2.1, 7.0.0 through 7.0.6, 6.4.0 through 6.4.3, 6.3.6 through 6.3.23 allows attacker to execute unauthorized code or commands via specially crafted HTTP requests.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-23-068 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
15 Sep 2023, 15:32
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CPE | cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:* | |
First Time |
Fortinet
Fortinet fortiweb |
|
References | (MISC) https://fortiguard.com/psirt/FG-IR-23-068 - Vendor Advisory |
13 Sep 2023, 13:57
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-13 13:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-34984
Mitre link : CVE-2023-34984
CVE.ORG link : CVE-2023-34984
JSON object : View
Products Affected
fortinet
- fortiweb
CWE