CVE-2023-29181 — Use of Externally-Controlled Format String in Fortinet Fortios

CWE-134 — Use of Externally-Controlled Format String4 documents4 sources

Severity

8.8HIGHNVD

EPSS

0.4%

top 41.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortios Fortinet Fortipam Fortinet Fortiproxy

Timeline

PublishedFeb 22

Description

A use of externally-controlled format string in Fortinet FortiOS 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12, 6.2.0 through 6.2.14, 6.0.0 through 6.0.16, FortiProxy 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, 2.0.0 through 2.0.12, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, FortiPAM 1.0.0 through 1.0.3 allows attacker to execute unauthorized code or commands via specially crafted command.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages6 packages

▶NVDfortinet/fortios6.0.0 — 6.2.15+3

▶NVDfortinet/fortipam1.0.0 — 1.1.0

▶NVDfortinet/fortiproxy1.0.0 — 2.0.13+2

▶CVEListV5fortinet/fortios7.2.0 — 7.2.4+12

▶CVEListV5fortinet/fortipam1.0.0 — 1.0.3

🔴Vulnerability Details

GHSA

GHSA-h49p-33vw-q6xw: A use of externally-controlled format string in Fortinet FortiOS 7↗2024-02-22

▶

CVEList

CVE-2023-29181: A use of externally-controlled format string in Fortinet FortiOS 7↗2024-02-22

▶

📋Vendor Advisories

Fortinet

Format String Bug in Fclicense daemon↗2024-02-22

▶