Vulnetix
Try Vulnetix Request Demo
CVE-2023-42791 PUBLISHED CVSS 8.600000381469727 HIGH

A relative path traversal in Fortinet FortiManager version 7.4.0 and 7.2.0 through 7.2.3 and 7.0.0 through 7.0.8 and 6.4.0 through 6.4.12 and 6.2.0 through 6.2.11 allows attacker to execute unauthorized code or commands via crafted HTTP requests.

EPSS 14.37% · 94.4th percentile

Risk Scores

CVSS v3.1
8.600000381469727
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:X/RC:X
EPSS Score
14.37%
94.4th percentile

Affected Products

VendorProductVersions
fortinetfortimanager7.4.0, 7.2.0, 7.0.0
fortinetfortimanager6.4.0, 7.4.0, 6.2.0
fortinetfortianalyzer7.0.0, 6.2.0, 6.4.0
FortinetFortiAnalyzer7.4.0, 6.2.0, 6.4.0
FortinetFortiManager7.2.0, 6.2.0, 6.4.0

Timeline

References

Open in Interactive Console →