Unrated severityNVD Advisory· Published Dec 13, 2023· Updated Aug 2, 2024
CVE-2023-40716
CVE-2023-40716
Description
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in the command line interpreter of FortiTester 2.3.0 through 7.2.3 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments when running execute restore/backup .
Affected products
22.3.0 through 7.2.3+ 1 more
- (no CPE)range: 2.3.0 through 7.2.3
- (no CPE)range: 7.2.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.