Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2023-18298
HistoryFeb 20, 2023 - 12:00 a.m.

Fortinet FortiWeb Resource Management Error Vulnerability

2023-02-2000:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
fortinet
fortiweb
web application layer
firewall
cross-site scripting
sql injection
cookie poisoning
schema poisoning
resource management error
unauthorized code
attacker
cnvd

0.0004 Low

EPSS

Percentile

9.1%

Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A resource management error vulnerability exists that could be exploited by an attacker to execute unauthorized code or commands via specially crafted commands.

CPENameOperatorVersion
fortinet fortiweb >=7.0.0,le7.0.3

0.0004 Low

EPSS

Percentile

9.1%

Related for CNVD-2023-18298