CVE-2023-47542

A improper neutralization of special elements used in a template engine [CWE-1336] in FortiManager versions 7.4.1 and below, versions 7.2.4 and below, and 7.0.10 and below allows attacker to execute unauthorized code or commands via specially crafted templates.
Configurations

No configuration.

History

21 Nov 2024, 08:30

Type Values Removed Values Added
Summary
  • (es) Una neutralización inadecuada de elementos especiales utilizados en un motor de plantillas [CWE-1336] en FortiManager versiones 7.4.1 e inferiores, versiones 7.2.4 e inferiores, y 7.0.10 e inferiores permite al atacante ejecutar código o comandos no autorizados a través de plantillas especialmente manipuladas.
References () https://fortiguard.com/psirt/FG-IR-23-419 - () https://fortiguard.com/psirt/FG-IR-23-419 -

09 Apr 2024, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-04-09 15:15

Updated : 2024-11-21 08:30


NVD link : CVE-2023-47542

Mitre link : CVE-2023-47542

CVE.ORG link : CVE-2023-47542


JSON object : View

Products Affected

No product.

CWE
CWE-1336

Improper Neutralization of Special Elements Used in a Template Engine