CVE-2023-41675

2023-10-1016:49:55

CWE-416

fortinet

github.com

use after free

fortios

fortiproxy

remote attacker

crash

proxy policies

firewall policies

ssl deep packet inspection

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C

AI Score

7.1

Confidence

Low

SSVC

Exploitation

none

Automatable

yes

Technical Impact

partial

JSON

A use after free vulnerability [CWE-416] in FortiOS version 7.2.0 through 7.2.4 and version 7.0.0 through 7.0.10 and FortiProxy version 7.2.0 through 7.2.2 and version 7.0.0 through 7.0.8 may allow an unauthenticated remote attacker to crash the WAD process via multiple crafted packets reaching proxy policies or firewall policies with proxy mode alongside SSL deep packet inspection.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*"
    ],
    "vendor": "fortinet",
    "product": "fortios",
    "versions": [
      {
        "status": "affected",
        "version": "7.2.0",
        "versionType": "custom",
        "lessThanOrEqual": "7.2.4"
      },
      {
        "status": "affected",
        "version": "7.0.0",
        "versionType": "custom",
        "lessThanOrEqual": "7.0.10"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:a:fortinet:fortiproxy:*:*:*:*:*:*:*:*"
    ],
    "vendor": "fortinet",
    "product": "fortiproxy",
    "versions": [
      {
        "status": "affected",
        "version": "7.2.0",
        "versionType": "custom",
        "lessThanOrEqual": "7.2.2"
      },
      {
        "status": "affected",
        "version": "7.0.0",
        "versionType": "custom",
        "lessThanOrEqual": "7.0.8"
      }
    ],
    "defaultStatus": "unknown"
  }
]