CVE-2023-34992 — OS Command Injection in Fortinet Fortisiem

CWE-78 — OS Command Injection6 documents6 sources

Severity

9.8CRITICALNVD

CNA10.0

EPSS

75.9%

top 1.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortisiem

Timeline

PublishedOct 10

Latest updateMay 28

Description

A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet allows attacker to execute unauthorized code or commands via crafted API requests.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5fortinet/fortisiem6.5.0 — 6.5.1+4

▶NVDfortinet/fortisiem6.6.0 — 6.6.3+7

🔴Vulnerability Details

GHSA

GHSA-22fj-hq2r-qcpq: A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSIEM version 7↗2023-10-10

▶

CVEList

CVE-2023-34992: A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet allows attacker to execute unau↗2023-10-10

▶

🔍Detection Rules

Suricata

ET EXPLOIT Fortinet FortiSIEM Unauthenticated Command Injection CVE-2023-34992↗2024-05-28

▶

📋Vendor Advisories

Fortinet

A improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet...↗2023-10-10

▶

🕵️Threat Intelligence

Bleepingcomputer

Fortinet warns of new FortiSIEM RCE bugs in confusing disclosure↗2024-02-07

▶