3 matches found
Fortinet FortiWeb Path traversal via browse report CGI component (FG-IR-22-142)
The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-142 advisory. - A relative path traversal vulnerability CWE-23 in FortiWeb version 7.0.1 and below, 6.4 all versions, 6.3 all versions, 6.2...
CVE-2023-23778
A relative path traversal vulnerability CWE-23 in FortiWeb version 7.0.1 and below, 6.4 all versions, 6.3 all versions, 6.2 all versions may allow an authenticated user to obtain unauthorized access to files and data via specifically crafted web requests...
CVE-2023-23778
CVE-2023-23778 describes a relative path traversal flaw in FortiWeb. Affected products/versions: FortiWeb 7.0.1 and below, 6.4.x below, 6.3.x below, and 6.2.x below. Root cause: improper access restriction allowing an authenticated user to access files/data via crafted requests. Impact: unauthori...