A relative path traversal vulnerability [CWE-23] in FortiWeb version 7.0.1 and below, 6.4 all versions, 6.3 all versions, 6.2 all versions may allow an authenticated user to obtain unauthorized access to files and data via specifically crafted web requests.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-22-142 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2023-02-16T18:06:19.308Z
Updated: 2023-02-16T18:06:19.308Z
Reserved: 2023-01-18T08:30:21.307Z
Link: CVE-2023-23778
JSON object: View
NVD Information
Status : Modified
Published: 2023-02-16T19:15:14.120
Modified: 2023-11-07T04:07:57.183
Link: CVE-2023-23778
JSON object: View
Redhat Information
No data.