CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-23783

A use of externally-controlled format string in Fortinet FortiWeb version 7.0.0 through 7.0.1, FortiWeb 6.4 all versions allows attacker to execute unauthorized code or commands via specially crafted command arguments.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.4%

CVSS Severity

CVSS v3 Score 6.7

References

https://fortiguard.com/psirt/FG-IR-22-187
https://fortiguard.com/psirt/FG-IR-22-187

Products affected by CVE-2023-23783

Fortinet » Fortiweb » Version: 6.4.0

cpe:2.3:a:fortinet:fortiweb:6.4.0
Fortinet » Fortiweb » Version: 6.4.1

cpe:2.3:a:fortinet:fortiweb:6.4.1
Fortinet » Fortiweb » Version: 7.0.0

cpe:2.3:a:fortinet:fortiweb:7.0.0
Fortinet » Fortiweb » Version: 7.0.1

cpe:2.3:a:fortinet:fortiweb:7.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-23783

Products

Pricing

Contact Us