ID
VAR-202311-1151
CVE
CVE-2023-42783
DESCRIPTION
A relative path traversal in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 and 8.4.2 through 8.4.0 and 8.3.2 through 8.3.0 and 8.2.2 allows attacker to read arbitrary files via crafted http requests.
Trust: 1.0
sources:
NVD: CVE-2023-42783
AFFECTED PRODUCTS
| vendor: | fortinet | model: | fortiwlm | scope: | lte | version: | 8.6.6 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | eq | version: | 8.3.1 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | eq | version: | 8.3.0 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | eq | version: | 8.4.1 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | lte | version: | 8.5.4 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | eq | version: | 8.4.0 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | eq | version: | 8.3.2 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | gte | version: | 8.6.0 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | gte | version: | 8.5.0 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | eq | version: | 8.4.2 | Trust: 1.0 |
| vendor: | fortinet | model: | fortiwlm | scope: | eq | version: | 8.2.2 | Trust: 1.0 |
sources:
NVD: CVE-2023-42783
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||
|
|
sources:
NVD: CVE-2023-42783 //
NVD: CVE-2023-42783
PROBLEMTYPE DATA
| problemtype: | CWE-23 | Trust: 1.0 |
sources:
NVD: CVE-2023-42783
EXTERNAL IDS
| db: | NVD | id: | CVE-2023-42783 | Trust: 1.0 |
sources:
NVD: CVE-2023-42783
REFERENCES
| url: | https://fortiguard.com/psirt/fg-ir-23-143 | Trust: 1.0 |
sources:
NVD: CVE-2023-42783
SOURCES
| db: | NVD | id: | CVE-2023-42783 |
LAST UPDATE DATE
2024-08-14T14:36:31.951000+00:00
SOURCES UPDATE DATE
| db: | NVD | id: | CVE-2023-42783 | date: | 2023-11-18T03:28:03.087 |
SOURCES RELEASE DATE
| db: | NVD | id: | CVE-2023-42783 | date: | 2023-11-14T18:15:53.853 |