CVE-2023-48788

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Mar 12, 2024

Updated: May 23, 2024

CWE ID 89

Summary

CVE-2023-48788 is a vulnerability affecting Fortinet FortiClientEMS versions 7.2.0 through 7.2.2 and 7.0.1 through 7.0.10. An attacker can exploit this SQL injection flaw by sending specially crafted packets to gain unauthorized code execution or execute commands within the impacted FortiClientEMS systems. This vulnerability poses a serious risk, as it allows an attacker to potentially gain full control over the affected systems. Fortinet strongly advises users to update their FortiClientEMS software to address this issue promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Fortinet

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tep0Lr
https://www.cve.org/CVERecord?id=CVE-2023-48788
https://nvd.nist.gov/vuln/detail/CVE-2023-48788

Back to Vulnerability Database

CVE-2023-48788

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations