CVE-2023-40717
published 2023-09-13CVE-2023-40717: A use of hard-coded credentials vulnerability [CWE-798] in FortiTester 2.3.0 through 7.2.3 may allow an attacker who managed to get a shell on the device to…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
A use of hard-coded credentials vulnerability [CWE-798] in FortiTester 2.3.0 through 7.2.3 may allow an attacker who managed to get a shell on the device to access the database via shell commands.
Affected
25 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | — | — |
| fortinet | fortitester | 2.3.0 – 7.2.3 | — |
| fortinet | fortitester | 2.4.0 – 2.4.1 | — |
| fortinet | fortitester | 3.3.0 – 3.3.1 | — |
| fortinet | fortitester | 3.5.0 – 3.5.1 | — |
| fortinet | fortitester | 3.7.0 – 3.7.1 | — |
| fortinet | fortitester | 3.9.0 – 3.9.2 | — |
| fortinet | fortitester | 4.1.0 – 4.1.1 | — |
| fortinet | fortitester | 4.2.0 – 4.2.1 | — |
| fortinet | fortitester | 7.1.0 – 7.1.1 | — |
| fortinet | fortitester | 7.2.0 – 7.2.3 | — |