VDB
CVE-2023-26205
CVE-2023-26205
PUBLISHED
CVSS 5.300000190734863 MEDIUM
An improper access control vulnerability [CWE-284] in FortiADC automation feature 7.1.0 through 7.1.2, 7.0 all versions, 6.2 all versions, 6.1 all versions may allow an authenticated low-privileged attacker to escalate their privileges to super_admin via a specific crafted configuration of fabric automation CLI script.
EPSS 0.26% · 50.2th percentile
Risk Scores
CVSS v3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:F/RL:X/RC:C
EPSS Score
0.26%
50.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| fortinet | fortiadc | 6.1.0, 6.2.0, 7.0.0 |
| Fortinet | FortiMail | 6.4.0, 6.2.0, 6.0.0 |
Timeline
- Nov 14, 2023 CVE Published
- Nov 15, 2023 EPSS Score
- Dec 15, 2023 EPSS Score
- Jan 14, 2024 EPSS Score
- Feb 14, 2024 EPSS Score
- Mar 15, 2024 EPSS Score
- Apr 14, 2024 EPSS Score
- May 14, 2024 EPSS Score
- Jun 13, 2024 EPSS Score
- Jul 13, 2024 EPSS Score
- Aug 13, 2024 EPSS Score
- Sep 12, 2024 EPSS Score
References
- https://www.fortiguard.com/psirt/FG-IR-22-299 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-306 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-274 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-385 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-518 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-292 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-108 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-290 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-287 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-064 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-135 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-177 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-061 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-151 advisory
- https://www.fortiguard.com/psirt/FG-IR-22-396 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-143 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-142 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-203 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-265 advisory
- https://fortiguard.com/psirt/FG-IR-23-203 url
…and 2 more