7.0.2

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

fortinet

CWE-415

NVD

Published: 2023-02-16

Updated: 2023-11-07

Summary

A double free in Fortinet FortiWeb version 7.0.0 through 7.0.3 may allows attacker to execute unauthorized code or commands via specially crafted commands

Vulnerable Configurations

Part	Description	Count
Application	Fortinet Fortinet Fortiweb 7.0.0 Fortinet Fortiweb 7.0.1 Fortinet Fortiweb 7.0.2	3

Common Weakness Enumeration (CWE)

CWE-415 - Double Free

References

https://fortiguard.com/psirt/FG-IR-22-348