A url redirection to untrusted site ('open redirect') in Fortinet FortiOS version 7.2.0 through 7.2.3, FortiOS version 7.0.0 through 7.0.9, FortiOS versions 6.4.0 through 6.4.12, FortiOS all versions 6.2, FortiOS all versions 6.0, FortiProxy version 7.2.0 through 7.2.2, FortiProxy version 7.0.0 through 7.0.8, FortiProxy all versions 2.0, FortiProxy all versions 1.2, FortiProxy all versions 1.1, FortiProxy all versions 1.0 allows an authenticated attacker to execute unauthorized code or commands via specially crafted requests.
References
History

Tue, 22 Oct 2024 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2023-04-11T16:06:13.309Z

Updated: 2024-10-22T20:47:37.434Z

Reserved: 2023-01-05T10:06:31.523Z

Link: CVE-2023-22641

cve-icon Vulnrichment

Updated: 2024-08-02T10:13:49.470Z

cve-icon NVD

Status : Modified

Published: 2023-04-11T17:15:08.100

Modified: 2023-11-07T04:07:11.987

Link: CVE-2023-22641

cve-icon Redhat

No data.