Unrated severityNVD Advisory· Published Jan 14, 2025· Updated Feb 18, 2025
CVE-2023-37931
CVE-2023-37931
Description
An improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-88] in FortiVoice Entreprise version 7.0.0 through 7.0.1 and before 6.4.8 allows an authenticated attacker to perform a blind sql injection attack via sending crafted HTTP or HTTPS requests
Affected products
1Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.