Unrated severityNVD Advisory· Published Jan 10, 2024· Updated Apr 17, 2025
CVE-2023-37932
CVE-2023-37932
Description
An improper limitation of a pathname to a restricted directory ('path traversal') vulnerability [CWE-22] in FortiVoiceEntreprise version 7.0.0 and before 6.4.7 allows an authenticated attacker to read arbitrary files from the system via sending crafted HTTP or HTTPS requests
Affected products
2- Range: <6.4.7, =7.0.0
- Range: 7.0.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.