Metrics
Affected Vendors & Products
Source | ID | Title |
---|---|---|
![]() |
EUVD-2023-52823 | A cross site request forgery vulnerability [CWE-352] in Fortinet FortiNDR version 7.4.0, 7.2.0 through 7.2.1 and 7.1.0 through 7.1.1 and before 7.0.5 may allow a remote unauthenticated attacker to execute unauthorized actions via crafted HTTP GET requests. |
Solution
Please upgrade to FortiNDR version 7.4.1 or above Please upgrade to FortiNDR version 7.2.2 or above Please upgrade to FortiNDR version 7.1.2 or above Please upgrade to FortiNDR version 7.0.6 or above
Workaround
No workaround given by the vendor.
Link | Providers |
---|---|
https://fortiguard.fortinet.com/psirt/FG-IR-23-353 |
![]() ![]() |
Tue, 22 Jul 2025 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:fortinet:fortindr:*:*:*:*:*:*:*:* cpe:2.3:a:fortinet:fortindr:7.4.0:*:*:*:*:*:*:* |
Fri, 11 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|
Tue, 11 Mar 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 11 Mar 2025 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A cross site request forgery vulnerability [CWE-352] in Fortinet FortiNDR version 7.4.0, 7.2.0 through 7.2.1 and 7.1.0 through 7.1.1 and before 7.0.5 may allow a remote unauthenticated attacker to execute unauthorized actions via crafted HTTP GET requests. | |
Weaknesses | CWE-352 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: fortinet
Published:
Updated: 2025-03-11T16:05:58.718Z
Reserved: 2023-11-19T19:58:38.554Z
Link: CVE-2023-48790

Updated: 2025-03-11T16:03:37.344Z

Status : Analyzed
Published: 2025-03-11T15:15:40.227
Modified: 2025-07-22T21:22:45.563
Link: CVE-2023-48790

No data.

Updated: 2025-07-12T22:31:44Z