CVE-2023-47542

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Apr 9, 2024

Updated: Apr 10, 2024

CWE ID 1336

Summary

CVE-2023-47542 is a vulnerability affecting FortiManager versions 7.4.1 and below, 7.2.4 and below, and 7.0.10 and below. This issue involves an improper neutralization of special elements in FortiManager's template engine (CWE-1336). An attacker can exploit this vulnerability by sending specially crafted templates, allowing them to execute unauthorized code or commands, potentially leading to serious security consequences. FortiManager users are advised to upgrade to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tSzHCk
https://www.cve.org/CVERecord?id=CVE-2023-47542
https://nvd.nist.gov/vuln/detail/CVE-2023-47542

Back to Vulnerability Database

CVE-2023-47542

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations