Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Vulnerabilities fixed in Fortinet

🗓️ 10 Apr 2024 00:00:00Reported by NCSCType 
ncsc
 ncsc🔗 advisories.ncsc.nl👁 4 Views

Fortinet fixed CVE-2023-45590 remote code execution and other vulnerabilities in FortiOS and related products.

Related
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2023-47541
9 Apr 202415:15
attackerkb
BDU FSTEC		The vulnerability of the Fortinet FortiClient security device for Linux, related to improper code generation management, allows a hacker to execute arbitrary code.
11 Apr 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the FortiSandbox threat detection and mitigation system lies in its improper handling of path name restrictions for restricted access directories. This allows attackers to delete any files they desire.
24 Apr 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the FortiSandbox threat detection and mitigation system arises from the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary commands.
24 Apr 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the software for centralized device management in Fortinet’s FortiManager system lies in errors during the elimination of specific elements in the template creation mechanism. This allows a malicious actor to execute arbitrary code.
24 Apr 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the FortiSandbox threat detection and mitigation system arises from the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary commands.
24 Apr 202400:00
bdu_fstec
BDU FSTEC		Vulnerability of FortiOS operating systems and FortiProxy proxy servers in protecting against internet attacks, due to insufficient protection of registration data, allowing attackers to perform arbitrary actions.
25 Apr 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the FortiSandbox threat detection and mitigation system arises from the lack of measures taken to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary code.
6 May 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the FortiSandbox threat detection and mitigation system lies in its improper restriction on the path name to the restricted access catalog, allowing attackers to read arbitrary files.
17 May 202400:00
bdu_fstec
BDU FSTEC		The vulnerability of the FortiSandbox threat detection and mitigation system arises from an improper restriction on the path name to the restricted access catalog, allowing a perpetrator to execute arbitrary code.
17 May 202400:00
bdu_fstec
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
10 Apr 2024 00:00Current
7.6High risk
Vulners AI Score7.6
CVSS 3.18.8 - 9.6
EPSS0.0248
SSVC
FortiOSFortiProxyFortiNACFortiSandboxFortiClientRemote code executionSensitive data accessSystem data accessSecurity measure circumvention
4