CVE-2023-41673
published 2023-12-13CVE-2023-41673: An improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and before 7.2.2 may allow a low privileged user to read or backup the…
medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
An improper authorization vulnerability [CWE-285] in Fortinet FortiADC version 7.4.0 and before 7.2.2 may allow a low privileged user to read or backup the full system configuration via HTTP or HTTPS requests.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | 6.0.0 – 6.0.4 | — |
| fortinet | fortiadc | 6.1.0 – 6.1.6 | — |
| fortinet | fortiadc | 6.2.0 – 6.2.6 | — |
| fortinet | fortiadc | 7.0.0 – 7.0.5 | — |
| fortinet | fortiadc | 7.1.0 – 7.1.4 | — |
| fortinet | fortiadc | 7.2.0 – 7.2.2 | — |
| fortinet | fortinet | — | — |