A improper neutralization of special elements used in a template engine vulnerability in Fortinet FortiSOAR 7.3.0 through 7.3.1 allows an authenticated, remote attacker to execute arbitrary code via a crafted payload.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-23-051 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2023-04-11T16:05:43.728Z
Updated: 2024-08-02T12:23:30.814Z
Reserved: 2023-03-09T10:09:33.119Z
Link: CVE-2023-27995
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-04-11T17:15:08.197
Modified: 2023-11-07T04:10:21.993
Link: CVE-2023-27995
Redhat
No data.