CVE-2023-22639

🗓️ 13 Jun 2023 08:41:44Reported by fortinetType

A privilege escalation vulnerability in multiple versions of Fortinet FortiOS and FortiProxy allows an attacker to execute specially crafted commands

Reporter	Title	Published	Views	Family All 14
BDU FSTEC	The vulnerability of the FortiOS operating systems and the FortiProxy proxy server, related to writing beyond buffer boundaries in memory, allows attackers to increase their privileges.	25 Jun 202300:00	–	bdu_fstec
CNNVD	Fortinet FortiOS 缓冲区错误漏洞	13 Jun 202300:00	–	cnnvd
CNVD	Fortinet FortiOS Buffer Overflow Vulnerability (CNVD-2024-26327)	20 Jun 202300:00	–	cnvd
CVE	CVE-2023-22639	13 Jun 202308:41	–	cve
EUVD	EUVD-2023-26773	3 Oct 202520:07	–	euvd
Fortinet	Protect	12 Jun 202300:00	–	fortinet
Tenable Nessus	Fortinet Fortigate Out-of-bound write in CLI (FG-IR-22-494)	12 Jun 202300:00	–	nessus
NCSC	Vulnerabilities fixed in Siemens products	12 Mar 202400:00	–	ncsc
NVD	CVE-2023-22639	13 Jun 202309:15	–	nvd
OSV	CVE-2023-22639	13 Jun 202309:15	–	osv

[
  {
    "vendor": "Fortinet",
    "product": "FortiOS",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "versionType": "semver",
        "version": "7.2.0",
        "lessThanOrEqual": "7.2.3",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "7.0.0",
        "lessThanOrEqual": "7.0.10",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.4.0",
        "lessThanOrEqual": "6.4.12",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.2.0",
        "lessThanOrEqual": "6.2.15",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.0.0",
        "lessThanOrEqual": "6.0.17",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fortinet",
    "product": "FortiProxy",
    "defaultStatus": "unaffected",
    "versions": [
      {
        "versionType": "semver",
        "version": "7.2.0",
        "lessThanOrEqual": "7.2.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "7.0.0",
        "lessThanOrEqual": "7.0.8",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "2.0.0",
        "lessThanOrEqual": "2.0.12",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "1.2.0",
        "lessThanOrEqual": "1.2.13",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "1.1.0",
        "lessThanOrEqual": "1.1.6",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "1.0.0",
        "lessThanOrEqual": "1.0.7",
        "status": "affected"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/psirt/FG-IR-22-494

13 Jun 2023 08:41Current

8.1High risk

Vulners AI Score8.1

CVSS 3.16.7

EPSS0.00049

CWE-787