A stack-based buffer overflow vulnerability [CWE-121] in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.19 and below SAML server configuration may allow an authenticated attacker to achieve arbitrary code execution via specifically crafted XML files.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-22-151 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2023-02-16T18:06:09.054Z
Updated: 2023-02-16T18:06:09.054Z
Reserved: 2023-01-18T08:30:21.308Z
Link: CVE-2023-23781
JSON object: View
NVD Information
Status : Modified
Published: 2023-02-16T19:15:14.317
Modified: 2023-11-07T04:07:58.000
Link: CVE-2023-23781
JSON object: View
Redhat Information
No data.