Security Advisory

CVE-2023-23779

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-02-16 18:06:16

Last updated 2024-10-23 14:46:56

Assigner fortinet

State PUBLISHED

Description

Multiple improper neutralization of special elements used in an OS Command (OS Command Injection) vulnerabilities [CWE-78] in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.19 and below may allow an authenticated attacker to execute unauthorized code or commands via crafted parameters of HTTP requests.

← Browse all CVEs View on cve.org ↗