VYPR
Unrated severityNVD Advisory· Published Jun 13, 2023· Updated Oct 23, 2024

CVE-2022-43953

CVE-2022-43953

Description

A use of externally-controlled format string in Fortinet FortiOS version 7.2.0 through 7.2.4, FortiOS all versions 7.0, FortiOS all versions 6.4, FortiOS all versions 6.2, FortiProxy version 7.2.0 through 7.2.1, FortiProxy version 7.0.0 through 7.0.7 allows attacker to execute unauthorized code or commands via specially crafted commands.

Affected products

4
  • Fortinet/Fortiproxyllm-fuzzy2 versions
    7.2.0 through 7.2.1, 7.0.0 through 7.0.7+ 1 more
    • (no CPE)range: 7.2.0 through 7.2.1, 7.0.0 through 7.0.7
    • (no CPE)range: 7.2.0
  • Fortinet/Fortiosllm-fuzzy2 versions
    7.2.0 through 7.2.4, all versions 7.0, all versions 6.4, all versions 6.2+ 1 more
    • (no CPE)range: 7.2.0 through 7.2.4, all versions 7.0, all versions 6.4, all versions 6.2
    • (no CPE)range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.