A improper neutralization of special elements used in a template engine [CWE-1336] in FortiManager versions 7.4.1 and below, versions 7.2.4 and below, and 7.0.10 and below allows attacker to execute unauthorized code or commands via specially crafted templates.
References
Configurations
No configuration.
History
21 Nov 2024, 08:30
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
|
References | () https://fortiguard.com/psirt/FG-IR-23-419 - |
09 Apr 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-09 15:15
Updated : 2024-11-21 08:30
NVD link : CVE-2023-47542
Mitre link : CVE-2023-47542
CVE.ORG link : CVE-2023-47542
JSON object : View
Products Affected
No product.
CWE
CWE-1336
Improper Neutralization of Special Elements Used in a Template Engine