EUVD-2023-40586

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Improper neutralization in FortiTester management interface may allow command execution by attackers.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-36642	13 Sep 202316:23	–	circl
CNNVD	FortiTester Operating System Command Injection Vulnerability	13 Sep 202300:00	–	cnnvd
CVE	CVE-2023-36642	13 Sep 202312:29	–	cve
Cvelist	CVE-2023-36642	13 Sep 202312:29	–	cvelist
NVD	CVE-2023-36642	13 Sep 202313:15	–	nvd
Prion	Command injection	13 Sep 202313:15	–	prion
Positive Technologies	PT-2023-25648 · Fortinet · Fortitester	13 Sep 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-36642	23 May 202505:03	–	redhatcve
Vulnrichment	CVE-2023-36642	13 Sep 202312:29	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "b2aab338-53cb-3b02-ace1-411031607ae9",
        "vendor": {
          "name": "Fortinet"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1b4153e2-97a1-3c20-8ce2-7fdd78856ee4",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.8.0"
      },
      {
        "id": "2b95661e-90ff-341c-9a17-b879275d9cab",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "7.0.0"
      },
      {
        "id": "500e9a14-a779-330c-a78f-9ff67cc4320f",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "7.2.0 ≤7.2.3"
      },
      {
        "id": "67e3474b-9a3c-3a50-ba0f-43f75b40e0b7",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.6.0"
      },
      {
        "id": "6d4f0c35-da6d-356d-bb38-d15ae260e8da",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "4.2.0 ≤4.2.1"
      },
      {
        "id": "740425d3-83ab-3907-80ac-f4f64a9cf48a",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "4.0.0"
      },
      {
        "id": "78c6a189-3abf-3e62-b7eb-2048e96d81c2",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.0.0"
      },
      {
        "id": "796c5740-fa6a-3bcc-b1d2-4ca60b22b412",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.7.0 ≤3.7.1"
      },
      {
        "id": "9580e7ad-0be8-37ec-a739-9d04998b8db2",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.4.0"
      },
      {
        "id": "b3fd2e8e-12c3-3c90-b34a-8ca51e38f2d2",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.9.0 ≤3.9.2"
      },
      {
        "id": "b8a881e2-109a-3a3f-9d2e-d0ff0f7a39d1",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.1.0"
      },
      {
        "id": "c97c39b9-2793-3e6d-801f-21a95497c7f6",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "7.1.0 ≤7.1.1"
      },
      {
        "id": "d2f1b797-cc38-3096-a41c-134b6c83963b",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.3.0 ≤3.3.1"
      },
      {
        "id": "df993f42-747d-330b-93a8-f28fd94d6fff",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.5.0 ≤3.5.1"
      },
      {
        "id": "e41dad8e-b05b-35b6-99b2-a320c65fcc53",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "4.1.0 ≤4.1.1"
      },
      {
        "id": "e9fd1309-aa32-3241-aa7b-6e5187b86e08",
        "product": {
          "name": "FortiTester"
        },
        "product_version": "3.2.0"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/psirt/FG-IR-22-501

03 Oct 2025 20:07Current

7.6High risk

Vulners AI Score7.6

CVSS 3.16.7 - 7.8

EPSS0.00102

SSVC