Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2023-98188
HistoryOct 13, 2023 - 12:00 a.m.

Fortinet FortiAnalyzer Data Forgery Issue Vulnerability

2023-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
2
fortianalyzer
data forgery
vulnerability
fortinet
network security
reporting solutions
data authenticity
remote attacker
syslog server
serial number
cnvd

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.8%

JSON

Fortinet FortiAnalyzer is a set of centralized network security reporting solutions from the U.S. company Fiat (Fortinet). The product is mainly used to collect network log data, and through the reporting suite of security events in the log, network traffic, Web content, etc. to analyze, report, archive operations. Fortinet FortiAnalyzer suffers from a data forgery issue vulnerability that stems from insufficient data authenticity verification. An unauthenticated, remote attacker could use this vulnerability to send a message to FortiAnalyzer’s syslog server via knowledge of the serial number of an authorized device.

Related

cvelist 1
prion 1
nvd 1
cve 1
cvelist
cvelist
CVE-2023-42782
2023-10-10 16:50:26
prion
prion
Authorization
2023-10-10 17:15:00
nvd
nvd
CVE-2023-42782
2023-10-10 17:15:12
cve
cve
CVE-2023-42782
2023-10-10 17:15:12

7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.8%

JSON
Related for CNVD-2023-98188
cvelist1prion1nvd1cve1