VYPR
Unrated severityNVD Advisory· Published Dec 13, 2023· Updated Aug 2, 2024

CVE-2023-40716

CVE-2023-40716

Description

An improper neutralization of special elements used in an OS command vulnerability [CWE-78]  in the command line interpreter of FortiTester 2.3.0 through 7.2.3 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments when running execute restore/backup .

Affected products

2
  • Fortinet/FortiTesterllm-fuzzy2 versions
    2.3.0 through 7.2.3+ 1 more
    • (no CPE)range: 2.3.0 through 7.2.3
    • (no CPE)range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.