VYPR
Unrated severityNVD Advisory· Published Oct 20, 2023· Updated Sep 12, 2024

CVE-2023-44256

CVE-2023-44256

Description

A server-side request forgery vulnerability [CWE-918] in Fortinet FortiAnalyzer version 7.4.0, version 7.2.0 through 7.2.3 and before 7.0.8 and FortiManager version 7.4.0, version 7.2.0 through 7.2.3 and before 7.0.8 allows a remote attacker with low privileges to view sensitive data from internal servers or perform a local port scan via a crafted HTTP request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Fortinet/Fortianalyzerllm-fuzzy2 versions
    7.4.0, 7.2.0-7.2.3, <7.0.8+ 1 more
    • (no CPE)range: 7.4.0, 7.2.0-7.2.3, <7.0.8
    • (no CPE)range: 7.4.0
  • Fortinet/Fortimanagerllm-fuzzy2 versions
    7.4.0, 7.2.0-7.2.3, <7.0.8+ 1 more
    • (no CPE)range: 7.4.0, 7.2.0-7.2.3, <7.0.8
    • (no CPE)range: 7.4.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.