Lucene search
China National Vulnerability DatabaseCNVD-2023-18298HistoryFeb 20, 2023 - 12:00 a.m.
Fortinet FortiWeb Resource Management Error Vulnerability
2023-02-2000:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
fortinet
fortiweb
web application layer
firewall
cross-site scripting
sql injection
cookie poisoning
schema poisoning
resource management error
unauthorized code
attacker
cnvd
0.0004 Low
EPSS
Percentile
9.1%
Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A resource management error vulnerability exists that could be exploited by an attacker to execute unauthorized code or commands via specially crafted commands.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortinet fortiweb >=7.0.0, | le | 7.0.3 |
Related
cve
cve
CVE-2022-40683
2023-02-16 19:15:13
cvelist
cvelist
CVE-2022-40683
2023-02-16 18:07:04
nvd
nvd
CVE-2022-40683
2023-02-16 19:15:13
nessus
nessus
Fortinet FortiWeb - Double free in pipe management (FG-IR-22-348)
2024-05-22 00:00:00
fortinet
fortinet
FortiWeb - Double free in pipe management
2023-02-16 00:00:00
prion
prion
Double free
2023-02-16 19:15:00