CVE-2023-41842

12.03.2024, 15:15

A use of externally-controlled format string vulnerability [CWE-134] in Fortinet FortiManager version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.3 and before 7.0.10, Fortinet FortiAnalyzer version 7.4.0 through 7.4.1, version 7.2.0 through 7.2.3 and before 7.0.10, Fortinet FortiAnalyzer-BigData before 7.2.5 and  Fortinet FortiPortal version 6.0 all versions and version 5.3 all versions allows a privileged attacker to execute unauthorized code or commands via specially crafted command arguments.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.7 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
fortinet	CNA	6.3 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 17%

Vendor	Product	Version
fortinet	fortimanager	7.4.1 ≤ 𝑥 ≤ 7.4.1
fortinet	fortimanager	7.2.3 ≤ 𝑥 ≤ 7.2.3
fortinet	fortimanager	7.0.9 ≤ 𝑥 ≤ 7.0.9
fortinet	fortimanager	6.4.14 ≤ 𝑥 ≤ 6.4.14
fortinet	fortimanager	6.2.12 ≤ 𝑥 ≤ 6.2.12
fortinet	fortianalyzer	7.4.1 ≤ 𝑥 ≤ 7.4.1
fortinet	fortianalyzer	7.2.3 ≤ 𝑥 ≤ 7.2.3
fortinet	fortianalyzer	6.4.14 ≤ 𝑥 ≤ 6.4.14
fortinet	fortianalyzer	6.2.12 ≤ 𝑥 ≤ 6.2.12
fortinet	fortiportal	6.0.14 ≤ 𝑥 ≤ 6.0.14
fortinet	fortiportal	5.3.8 ≤ 𝑥 ≤ 5.3.8
fortinet	fortianalyzer	6.2.0 ≤ 𝑥 < 7.0.10
fortinet	fortianalyzer	7.2.0 ≤ 𝑥 < 7.2.4
fortinet	fortianalyzer	7.4.0 ≤ 𝑥 < 7.4.2
fortinet	fortianalyzer_bigdata	6.4.5 ≤ 𝑥 ≤ 6.4.7
fortinet	fortianalyzer_bigdata	7.0.1 ≤ 𝑥 ≤ 7.0.6
fortinet	fortianalyzer_bigdata	7.2.0 ≤ 𝑥 < 7.2.6
fortinet	fortianalyzer_bigdata	6.2.5
fortinet	fortimanager	6.2.0 ≤ 𝑥 < 7.0.10
fortinet	fortimanager	7.2.0 ≤ 𝑥 < 7.2.4
fortinet	fortimanager	7.4.0 ≤ 𝑥 < 7.4.2
fortinet	fortiportal	5.3.0 ≤ 𝑥 ≤ 6.0.14

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-134 - Use of Externally-Controlled Format String
The software uses a function that accepts a format string as an argument, but the format string originates from an external source.

References

https://fortiguard.com/psirt/FG-IR-23-304