VYPR
Unrated severityNVD Advisory· Published Jun 13, 2023· Updated Oct 22, 2024

CVE-2023-29178

CVE-2023-29178

Description

A access of uninitialized pointer vulnerability [CWE-824] in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9 and FortiOS version 7.2.0 through 7.2.4 and before 7.0.11 allows an authenticated attacker to repetitively crash the httpsd process via crafted HTTP or HTTPS requests.

Affected products

4
  • Fortinet/Fortiproxyllm-fuzzy2 versions
    7.2.0 through 7.2.3, before 7.0.9+ 1 more
    • (no CPE)range: 7.2.0 through 7.2.3, before 7.0.9
    • (no CPE)range: 7.2.0
  • Fortinet/Fortiosllm-fuzzy2 versions
    7.2.0 through 7.2.4, before 7.0.11+ 1 more
    • (no CPE)range: 7.2.0 through 7.2.4, before 7.0.11
    • (no CPE)range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.