CVE-2023-45584
published 2025-08-12CVE-2023-45584: A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all…
high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
A double free vulnerability [CWE-415] vulnerability in Fortinet FortiOS 7.4.0, FortiOS 7.2.0 through 7.2.5, FortiOS 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.1, FortiProxy 7.2.0 through 7.2.7, FortiProxy 7.0.0 through 7.0.13 allows a privileged attacker to execute code or commands via crafted HTTP or HTTPs requests.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortinet | — | — |
| fortinet | fortios | — | — |
| fortinet | fortios | — | — |
| fortinet | fortios | >= 6.4.0 < 7.0.13 | 7.0.13 |
| fortinet | fortios | 6.4.0 – 6.4.16 | — |
| fortinet | fortios | 7.0.0 – 7.0.12 | — |
| fortinet | fortios | >= 7.2.0 < 7.2.6 | 7.2.6 |
| fortinet | fortios | 7.2.0 – 7.2.5 | — |
| fortinet | fortipam | — | — |
| fortinet | fortipam | 1.0.0 – 1.1.2 | — |
| fortinet | fortipam | 1.1.0 – 1.1.2 | — |
| fortinet | fortiproxy | — | — |
| fortinet | fortiproxy | >= 7.0.0 < 7.0.14 | 7.0.14 |
| fortinet | fortiproxy | 7.0.0 – 7.0.13 | — |
| fortinet | fortiproxy | >= 7.2.0 < 7.2.8 | 7.2.8 |
| fortinet | fortiproxy | 7.2.0 – 7.2.7 | — |
| fortinet | fortiproxy | >= 7.4.0 < 7.4.2 | 7.4.2 |
| fortinet | fortiproxy | 7.4.0 – 7.4.1 | — |