CVE-2023-23781

A stack-based buffer overflow vulnerability [CWE-121] in FortiWeb version 7.0.1 and below, 6.4 all versions, version 6.3.19 and below SAML server configuration may allow an authenticated attacker to achieve arbitrary code execution via specifically crafted XML files.
References
Link Resource
https://fortiguard.com/psirt/FG-IR-22-151 Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*
cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*
cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*

Information

Published : 2023-02-16 07:15

Updated : 2023-02-24 07:57


NVD link : CVE-2023-23781

Mitre link : CVE-2023-23781

Products Affected
No products.
CWE
No CWE.