A stack-based buffer overflow vulnerability [CWE-121] in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.19 and below SAML server configuration may allow an authenticated attacker to achieve arbitrary code execution via specifically crafted XML files.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-22-151 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2023-02-16T18:06:09.054Z
Updated: 2024-08-02T10:42:26.150Z
Reserved: 2023-01-18T08:30:21.308Z
Link: CVE-2023-23781
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-16T19:15:14.317
Modified: 2023-11-07T04:07:58.000
Link: CVE-2023-23781
Redhat
No data.