CVE-2023-23775 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-23775 PUBLISHED CVSS 8.800000190734863 HIGH

A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.1 and 7.2.0 through 7.2.7 and 7.0.0 through 7.0.12 and 6.4.6 through 6.4.15 and 6.2.9 through 6.2.16 and 6.0.13 through 6.0.18 allows attacker to execute unauthorized code or commands via specially crafted CLI commands.

EPSS 0.06% · 19.7th percentile

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.06%

19.7th percentile

Affected Products

Vendor	Product	Versions
fortinet	fortisoar	7.0.0, 7.0.0, 7.0.0
Fortinet	FortiSOAR	7.2.0, 7.0.0
Fortinet	FortiOS	7.2.0, 6.2.9, 7.4.0
fortinet	fortios	6.0.13, 7.4.0, 7.2.0

Timeline

Jun 11, 2024 CVE Published
Jun 12, 2024 EPSS Score
Jul 4, 2024 EPSS Score
Jul 27, 2024 EPSS Score
Aug 2, 2024 CVE Updated
Aug 18, 2024 EPSS Score
Sep 10, 2024 EPSS Score
Oct 2, 2024 EPSS Score
Oct 24, 2024 EPSS Score
Nov 16, 2024 EPSS Score
Dec 9, 2024 EPSS Score
Jan 1, 2025 EPSS Score

References

https://fortiguard.com/psirt/FG-IR-22-448 url
https://nvd.nist.gov/vuln/detail/CVE-2023-23775 advisory
https://www.fortiguard.com/psirt/FG-IR-23-495 advisory
https://www.fortiguard.com/psirt/FG-IR-24-170 advisory
https://www.fortiguard.com/psirt/FG-IR-24-036 advisory
https://www.fortiguard.com/psirt/FG-IR-23-471 advisory
https://www.fortiguard.com/psirt/FG-IR-24-128 advisory
https://www.fortiguard.com/psirt/FG-IR-23-460 advisory
https://www.fortiguard.com/psirt/FG-IR-23-423 advisory
https://www.fortiguard.com/psirt/FG-IR-23-356 advisory
https://fortiguard.fortinet.com/psirt/FG-IR-23-356 url

Open in Interactive Console →