CVE-2023-29181

Summary

A use of externally-controlled format string in Fortinet FortiOS 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12, 6.2.0 through 6.2.14, 6.0.0 through 6.0.16, FortiProxy 7.2.0 through 7.2.4, 7.0.0 through 7.0.10, 2.0.0 through 2.0.12, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7, FortiPAM 1.0.0 through 1.0.3 allows attacker to execute unauthorized code or commands via specially crafted command.

Affected Software

VendorProductVersion RangeStatus
FortinetFortiPAM1.0.0 <= 1.0.3affected
FortinetFortiOS7.2.0 <= 7.2.4affected
FortinetFortiOS7.0.0 <= 7.0.11affected
FortinetFortiOS6.4.0 <= 6.4.12affected
FortinetFortiOS6.2.0 <= 6.2.14affected
FortinetFortiOS6.0.0 <= 6.0.16affected
FortinetFortiOS5.6.0 <= 5.6.14affected
FortinetFortiOS5.4.0 <= 5.4.13affected
FortinetFortiOS5.2.0 <= 5.2.15affected
FortinetFortiOS5.0.0 <= 5.0.14affected
FortinetFortiOS4.3.0 <= 4.3.19affected
FortinetFortiOS4.2.0 <= 4.2.16affected
FortinetFortiOS4.1.1 <= 4.1.11affected
FortinetFortiOS4.0.0 <= 4.0.4affected
FortinetFortiProxy7.2.0 <= 7.2.4affected
FortinetFortiProxy7.0.0 <= 7.0.10affected
FortinetFortiProxy2.0.0 <= 2.0.12affected
FortinetFortiProxy1.2.0 <= 1.2.13affected
FortinetFortiProxy1.1.0 <= 1.1.6affected
FortinetFortiProxy1.0.0 <= 1.0.7affected

Weaknesses

  • CWE-134: Execute unauthorized code or commands

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References