Lucene search
FortinetCVELIST:CVE-2023-41841HistoryOct 10, 2023 - 4:49 p.m.
CVE-2023-41841
2023-10-1016:49:35
CWE-285
fortinet
www.cve.org
4
vulnerability
fortinet
fortios
authorization
prof-admin
elevated actions
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H/E:U
AI Score
8.9
Confidence
High
EPSS
0.001
Percentile
25.6%
An improper authorization vulnerability in Fortinet FortiOS 7.0.0 - 7.0.11 and 7.2.0 - 7.2.4 allows an attacker belonging to the prof-admin profile to perform elevated actions.
CNA Affected
[
{
"vendor": "Fortinet",
"product": "FortiOS",
"defaultStatus": "unaffected",
"versions": [
{
"versionType": "semver",
"version": "7.2.0",
"lessThanOrEqual": "7.2.4",
"status": "affected"
},
{
"versionType": "semver",
"version": "7.0.0",
"lessThanOrEqual": "7.0.11",
"status": "affected"
}
]
}
]References
Related
prion
prion
Authorization
2023-10-10 17:15:00
nvd
nvd
CVE-2023-41841
2023-10-10 17:15:12
nessus
nessus
cve
cve
CVE-2023-41841
2023-10-10 17:15:12
fortinet
fortinet
Protect
2023-10-10 00:00:00
ics
ics
Siemens RUGGEDCOM APE1808 with Fortigate NGFW Devices
2024-03-14 12:00:00
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H/E:U
AI Score
8.9
Confidence
High
EPSS
0.001
Percentile
25.6%
Related for CVELIST:CVE-2023-41841