A null pointer dereference in Fortinet FortiOS before 7.2.5 and before 7.0.11, FortiProxy before 7.2.3 and before 7.0.9 allows attacker to denial of sslvpn service via specifically crafted request in network parameter.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/258201 | Third Party Advisory |
https://fortiguard.com/psirt/FG-IR-23-015 | Not Applicable |
Configurations
Configuration 1 (hide)
|
History
23 Jun 2023, 21:27
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | (MISC) https://fortiguard.com/psirt/FG-IR-23-015 - Not Applicable | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CPE | cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:* cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:* |
|
CWE | CWE-476 | |
First Time |
Fortinet fortiproxy
Fortinet Fortinet fortios |
16 Jun 2023, 10:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-06-16 10:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-33307
Mitre link : CVE-2023-33307
CVE.ORG link : CVE-2023-33307
JSON object : View
Products Affected
fortinet
- fortios
- fortiproxy
CWE
CWE-476
NULL Pointer Dereference