CVE-2023-48783
published 2024-01-10CVE-2023-48783: An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7.2.1 and below, version 7.0.6 and below, version…
PriorityP344medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
EPSS
22.24%
97.4th percentile
An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7.2.1 and below, version 7.0.6 and below, version 6.0.14 and below, version 5.3.8 and below may allow a remote authenticated user with at least read-only permissions to access to other organization endpoints via crafted GET requests.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortiportal | — | — |
| fortinet | fortiportal | 5.3.0 – 5.3.8 | — |
| fortinet | fortiportal | 6.0.0 – 6.0.14 | — |
| fortinet | fortiportal | >= 7.0.0 < 7.0.7 | 7.0.7 |
| fortinet | fortiportal | 7.0.0 – 7.0.6 | — |
| fortinet | fortiportal | >= 7.2.0 < 7.2.2 | 7.2.2 |
| fortinet | fortiportal | 7.2.0 – 7.2.1 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Fortinet
An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7.2.1 and belo...
vendor_fortinet·2024-01-10·CVSS 5.4
CVE-2023-48783 [MEDIUM] CWE-639 An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7.2.1 and belo...
FG-IR-23-408: An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7.2.1 and belo...
An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7.2.1 and below, version 7.0.6 and below, version 6.0.14 and below, version 5.3.8 and below may allow a remote authenticated user with at least read-only permissions to access to other organization endpoints via crafted GET requests.
CVEs: CVE-2023-48783
CWEs: CWE-639
CVSS: 5.4 (medium)
Affected products: FortiPortal
GHSA
GHSA-pp66-r2h3-jcwq: An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7
ghsa_unreviewed·2024-01-10
CVE-2023-48783 [MEDIUM] CWE-639 GHSA-pp66-r2h3-jcwq: An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7
An Authorization Bypass Through User-Controlled Key vulnerability [CWE-639] affecting PortiPortal version 7.2.1 and below, version 7.0.6 and below, version 6.0.14 and below, version 5.3.8 and below may allow a remote authenticated user with at least read-only permissions to access to other organization endpoints via crafted GET requests.
Suricata
ET WEB_SPECIFIC_APPS Fortinet FortiWLM Unauthenticated Arbitrary File Read (CVE-2023-48783)
suricata·2024-12-19·CVSS 5.4
CVE-2023-48783 [MEDIUM] ET WEB_SPECIFIC_APPS Fortinet FortiWLM Unauthenticated Arbitrary File Read (CVE-2023-48783)
ET WEB_SPECIFIC_APPS Fortinet FortiWLM Unauthenticated Arbitrary File Read (CVE-2023-48783)
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS Fortinet FortiWLM Unauthenticated Arbitrary File Read (CVE-2023-48783)"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/ems/cgi-bin/ezrf_upgrade_images.cgi"; fast_pattern; content:"op_type=uploadstatus"; content:"progressfile|3d|"; pcre:"/^[^&]*?(?:(?:\x2e|%2[Ee]){1,2}(?:\x2f|\x5c|%5[Cc]|%2[Ff]){1,}){2,}/R"; reference:url,www.horizon3.ai/attack-research/attack-blogs/fortiwlm-the-almost-story-for-the-forti-forty; reference:cve,2023-48783; classtype:web-application-attack; sid:2058408; rev:1; metadata:affected_product FortiWLM, attack_target Server, tls_state TLSDecrypt, created_at 2024_12_19,
No public exploits indexed.
No writeups or analysis indexed.
2024-01-10
Published