VYPR
Unrated severityNVD Advisory· Published Jun 16, 2023· Updated Oct 22, 2024

CVE-2023-33306

CVE-2023-33306

Description

A null pointer dereference in Fortinet FortiOS before 7.2.5, before 7.0.11 and before 6.4.13, FortiProxy before 7.2.4 and before 7.0.10 allows attacker to denial of sslvpn service via specifically crafted request in bookmark parameter.

Affected products

4
  • Fortinet/Fortiproxyllm-fuzzy2 versions
    <7.2.4, <7.0.10+ 1 more
    • (no CPE)range: <7.2.4, <7.0.10
    • (no CPE)range: 7.2.0
  • Fortinet/Fortiosllm-fuzzy2 versions
    <7.2.5, <7.0.11, <6.4.13+ 1 more
    • (no CPE)range: <7.2.5, <7.0.11, <6.4.13
    • (no CPE)range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.