Lucene search

FortinetCVE-2023-42788

HistoryOct 10, 2023 - 5:15 p.m.

CVE-2023-42788

2023-10-1017:15:12

CWE-78

fortinet

web.nvd.nist.gov

cve-2023-42788

os command injection

fortimanager

fortianalyzer

vulnerability

cwe-78

nvd

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F

AI Score

6.7

Confidence

High

EPSS

Percentile

15.6%

JSON

An improper neutralization of special elements used in an os command (‘OS Command Injection’) vulnerability [CWE-78] in FortiManager & FortiAnalyzer version 7.4.0, version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.8, version 6.4.0 through 6.4.12 and version 6.2.0 through 6.2.11 may allow a local attacker with low privileges to execute unauthorized code via specifically crafted arguments to a CLI command

Affected configurations

Nvd

Node

fortinetfortianalyzerRange6.2.0–6.2.11

fortinetfortianalyzerRange6.4.0–6.4.12

fortinetfortianalyzerRange7.0.0–7.0.8

fortinetfortianalyzerRange7.2.0–7.2.3

fortinetfortianalyzerMatch7.4.0

fortinetfortimanagerRange6.2.0–6.2.11

fortinetfortimanagerRange6.4.0–6.4.12

fortinetfortimanagerRange7.0.0–7.0.8

fortinetfortimanagerRange7.2.0–7.2.3

fortinetfortimanagerMatch7.4.0

VendorProductVersionCPE
fortinetfortianalyzer*cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*
fortinetfortianalyzer7.4.0cpe:2.3:a:fortinet:fortianalyzer:7.4.0:*:*:*:*:*:*:*
fortinetfortimanager*cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*
fortinetfortimanager7.4.0cpe:2.3:a:fortinet:fortimanager:7.4.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fortinet	fortianalyzer	*	cpe:2.3:a:fortinet:fortianalyzer::::::::
fortinet	fortianalyzer	7.4.0	cpe:2.3:a:fortinet:fortianalyzer:7.4.0:::::::*
fortinet	fortimanager	*	cpe:2.3:a:fortinet:fortimanager::::::::
fortinet	fortimanager	7.4.0	cpe:2.3:a:fortinet:fortimanager:7.4.0:::::::*

CNA Affected

[
  {
    "vendor": "Fortinet",
    "product": "FortiAnalyzer",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "version": "7.4.0",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "7.2.0",
        "lessThanOrEqual": "7.2.3",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "7.0.0",
        "lessThanOrEqual": "7.0.8",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.4.0",
        "lessThanOrEqual": "6.4.12",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.2.0",
        "lessThanOrEqual": "6.2.11",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fortinet",
    "product": "FortiManager",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "version": "7.4.0",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "7.2.0",
        "lessThanOrEqual": "7.2.3",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "7.0.0",
        "lessThanOrEqual": "7.0.8",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.4.0",
        "lessThanOrEqual": "6.4.12",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.2.0",
        "lessThanOrEqual": "6.2.11",
        "status": "affected"
      }
    ]
  }
]

References

fortiguard.com/psirt/FG-IR-23-167

github.com/orangecertcc/security-research/security/advisories/GHSA-qpv8-g6qv-rf8p

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F

AI Score

6.7

Confidence

High

EPSS

Percentile

15.6%

JSON

Related for CVE-2023-42788