EUVD-2023-37465

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Buffer overflow in Fortinet FortiMail and FortiNDR allows authenticated attack via crafted HTTP requests

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-33302	31 Mar 202515:16	–	circl
CNNVD	Fortinet FortiMail 安全漏洞	31 Mar 202500:00	–	cnnvd
CVE	CVE-2023-33302	31 Mar 202514:58	–	cve
Cvelist	CVE-2023-33302	31 Mar 202514:58	–	cvelist
NVD	CVE-2023-33302	31 Mar 202515:15	–	nvd
OSV	CVE-2023-33302	31 Mar 202515:15	–	osv
Positive Technologies	PT-2025-13782 · Fortinet · Fortindr +1	31 Mar 202500:00	–	ptsecurity
RedhatCVE	CVE-2023-33302	2 Apr 202515:43	–	redhatcve
Vulnrichment	CVE-2023-33302	31 Mar 202514:58	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "fa43eb04-293e-3d3a-85b4-29f9b8321ddc",
        "vendor": {
          "name": "Fortinet"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "10e44448-86b9-3be4-a021-c2118d5e2b36",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "5.2.0 ≤5.2.10"
      },
      {
        "id": "160b575a-2c39-3f87-84a8-bc7815e09c19",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "6.2.0 ≤6.2.6"
      },
      {
        "id": "3195c825-b7ad-31e1-a0c4-f5f1fa439849",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "5.0.0 ≤5.0.11"
      },
      {
        "id": "3a6e456b-deb9-3dcb-9710-c2f1d658bd25",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "6.0.0 ≤6.0.10"
      },
      {
        "id": "63e739e1-8817-3102-90ca-6db0931836ab",
        "product": {
          "name": "FortiNDR"
        },
        "product_version": "1.4.0"
      },
      {
        "id": "711f350e-eddc-3bf1-9c6c-c738e4ecfb1f",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "5.4.0 ≤5.4.12"
      },
      {
        "id": "a223f5de-5dda-3af1-821e-2f73380f8e5c",
        "product": {
          "name": "FortiNDR"
        },
        "product_version": "1.5.0 ≤1.5.3"
      },
      {
        "id": "a43141ea-7a6b-3ecb-a080-132da930507a",
        "product": {
          "name": "FortiNDR"
        },
        "product_version": "1.1.0"
      },
      {
        "id": "a6377ada-304c-3f26-9e56-22d317b81cb4",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "5.3.0 ≤5.3.10"
      },
      {
        "id": "bb0f73dc-30e0-3f56-a19e-e4d43a1f9e58",
        "product": {
          "name": "FortiNDR"
        },
        "product_version": "7.0.0 ≤7.0.6"
      },
      {
        "id": "c22b0cdd-9db8-3855-90a8-31aef3de5043",
        "product": {
          "name": "FortiNDR"
        },
        "product_version": "7.1.0"
      },
      {
        "id": "c519cbf0-c259-3b24-b25b-e13805a58990",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "5.3.12 ≤5.3.13"
      },
      {
        "id": "d28e5cf5-06cb-34b3-9c69-937fe49e0571",
        "product": {
          "name": "FortiNDR"
        },
        "product_version": "1.2.0"
      },
      {
        "id": "d7a18eb3-7088-315b-8860-a9481ac37264",
        "product": {
          "name": "FortiNDR"
        },
        "product_version": "7.2.0"
      },
      {
        "id": "da0493c4-2554-3079-b6fa-9a49e0b5c1e5",
        "product": {
          "name": "FortiNDR"
        },
        "product_version": "1.3.0 ≤1.3.1"
      },
      {
        "id": "f854eda8-663c-312d-b29d-6416c0f7ee0b",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "5.1.0 ≤5.1.7"
      },
      {
        "id": "fa41f4a5-4464-3772-9c17-84f302bfda10",
        "product": {
          "name": "FortiMail"
        },
        "product_version": "6.4.0 ≤6.4.4"
      }
    ]
  }
]

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-33302
fortiguard	www.fortiguard.fortinet.com/psirt/FG-IR-21-023

03 Oct 2025 20:07Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.14.7 - 8.8

EPSS0.00305

SSVC