Security Advisory

CVE-2023-25606

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-11 16:52:51

Last updated 2024-10-22 20:41:02

Assigner fortinet

State PUBLISHED

Description

An improper limitation of a pathname to a restricted directory (Path Traversal) vulnerability [CWE-23] in FortiAnalyzer and FortiManager management interface 7.2.0 through 7.2.1, 7.0.0 through 7.0.5, 6.4 all versions may allow a remote and authenticated attacker to retrieve arbitrary files from the underlying filesystem via specially crafted web requests.

← Browse all CVEs View on cve.org ↗