CVE-2023-29180
EUVD-2023-3278122.02.2024, 10:15
A null pointer dereference in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12, 6.2.0 through 6.2.14, 6.0.0 through 6.0.16, FortiProxy 7.2.0 through 7.2.3, 7.0.0 through 7.0.10, 2.0.0 through 2.0.12, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7 allows attacker to denial of service via specially crafted HTTP requests.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| fortinet | fortiproxy | 1.0.0 ≤ 𝑥 ≤ 1.0.7 |
| fortinet | fortiproxy | 1.1.0 ≤ 𝑥 ≤ 1.1.6 |
| fortinet | fortiproxy | 1.2.0 ≤ 𝑥 ≤ 1.2.13 |
| fortinet | fortiproxy | 2.0.0 ≤ 𝑥 < 2.0.13 |
| fortinet | fortiproxy | 7.0.0 ≤ 𝑥 < 7.0.11 |
| fortinet | fortiproxy | 7.2.0 ≤ 𝑥 < 7.2.4 |
| fortinet | fortios | 6.0.0 ≤ 𝑥 < 6.0.17 |
| fortinet | fortios | 6.2.0 ≤ 𝑥 < 6.2.15 |
| fortinet | fortios | 6.4.0 ≤ 𝑥 < 6.4.13 |
| fortinet | fortios | 7.0.0 ≤ 𝑥 < 7.0.12 |
| fortinet | fortios | 7.2.0 ≤ 𝑥 < 7.2.5 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| fortinet | fortios | 7.2.0 ≤ 𝑥 ≤ 7.2.4 | ADP |
| fortinet | fortios | 7.0.0 ≤ 𝑥 ≤ 7.0.11 | ADP |
| fortinet | fortios | 6.4.0 ≤ 𝑥 ≤ 6.4.12 | ADP |
| fortinet | fortios | 6.2.0 ≤ 𝑥 ≤ 6.2..14 | ADP |
| fortinet | fortios | 6.0.0 ≤ 𝑥 ≤ 6.0.16 | ADP |
| fortinet | fortiproxy | 7.2.0 ≤ 𝑥 ≤ 7.2.3 | ADP |
| fortinet | fortiproxy | 7.0.0 ≤ 𝑥 ≤ 7.0.10 | ADP |
| fortinet | fortiproxy | 2.0.0 ≤ 𝑥 ≤ 2.0.12 | ADP |
| fortinet | fortiproxy | 1.2.0 ≤ 𝑥 ≤ 1.2.13 | ADP |
| fortinet | fortiproxy | 1.1.0 ≤ 𝑥 ≤ 1.1.6 | ADP |
| fortinet | fortiproxy | 1.0.0 ≤ 𝑥 ≤ 1.0.7 | ADP |
Common Weakness Enumeration