VDB
CVE-2023-23775
CVE-2023-23775
PUBLISHED
CVSS 8.800000190734863 HIGH
A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.12 and 6.4.6 through 6.4.15 and 6.2.9 through 6.2.16 and 6.0.13 through 6.0.18 allows attacker to execute unauthorized code or commands via specially crafted CLI commands.
EPSS 0.06% · 20.1th percentile
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.06%
20.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| fortinet | fortisoar | 7.0.0, 7.0.0, 7.0.0 |
| Fortinet | FortiSOAR | 7.2.0, 7.0.0 |
| Fortinet | FortiOS | 6.4.6, 7.4.0, 7.0.0 |
| fortinet | fortios | 7.4.0, 6.2.9, 6.4.6 |
Timeline
- Jun 11, 2024 CVE Published
- Jun 12, 2024 EPSS Score
- Jul 5, 2024 EPSS Score
- Jul 28, 2024 EPSS Score
- Aug 2, 2024 CVE Updated
- Aug 20, 2024 EPSS Score
- Sep 12, 2024 EPSS Score
- Oct 5, 2024 EPSS Score
- Oct 28, 2024 EPSS Score
- Nov 20, 2024 EPSS Score
- Dec 14, 2024 EPSS Score
- Jan 6, 2025 EPSS Score
References
- https://fortiguard.com/psirt/FG-IR-22-448 url
- https://nvd.nist.gov/vuln/detail/CVE-2023-23775 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-495 advisory
- https://www.fortiguard.com/psirt/FG-IR-24-170 advisory
- https://www.fortiguard.com/psirt/FG-IR-24-036 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-471 advisory
- https://www.fortiguard.com/psirt/FG-IR-24-128 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-460 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-423 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-356 advisory
- https://fortiguard.fortinet.com/psirt/FG-IR-23-356 url