Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistFortinetCVELIST:CVE-2023-28002
HistoryNov 14, 2023 - 6:05 p.m.

CVE-2023-28002

2023-11-1418:05:12
CWE-354
fortinet
raw.githubusercontent.com
2
fortios
fortiproxy
integrity check

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.2%

JSON

An improper validation of integrity check value vulnerability [CWE-354] in FortiOS 7.2.0 through 7.2.3, 7.0.0 through 7.0.12, 6.4 all versions, 6.2 all versions, 6.0 all versions and FortiProxy 7.2 all versions, 7.0 all versions, 2.0 all versions VMs may allow a local attackerย with admin privileges to boot a malicious image on the device and bypass the filesystem integrity check in place.

Related

nessus 1
cve 1
prion 1
ics 1
nessus
nessus
Fortinet Fortigate VM - Bypass of root file system integrity checks at boot time on VM (FG-IR-22-396)
2023-11-14 00:00:00
cve
cve
CVE-2023-28002
2023-11-14 18:15:29
prion
prion
Input validation
2023-11-14 18:15:00
ics
ics
Siemens RUGGEDCOM APE1808 with Fortigate NGFW Devices
2024-03-14 12:00:00

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for CVELIST:CVE-2023-28002
nessus1cve1prion1ics1