Vulnerability CVE-2023-48784


Published: 2024-04-09

Description:
A use of externally-controlled format string vulnerability [CWE-134] in FortiOS version 7.4.1 and below, version 7.2.7 and below, version 7.0.14 and below, version 6.4.15 and below command line interface may allow a local privileged attacker with super-admin profile and CLI access to execute arbitrary code or commands via specially crafted requests.

Type:

CWE-134

(Uncontrolled Format String)

 References:
https://fortiguard.com/psirt/FG-IR-23-413

Copyright 2024, cxsecurity.com

 

Back to Top