CVE-2023-33302

Summary

A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiMail webmail and administrative interface version 6.4.0 through 6.4.4 and before 6.2.6 and FortiNDR administrative interface version 7.2.0 and before 7.1.0 allows an authenticated attacker with regular webmail access to trigger a buffer overflow and to possibly execute unauthorized code or commands via specifically crafted HTTP requests.

Affected Software

VendorProductVersion RangeStatus
FortinetFortiNDR7.2.0affected
FortinetFortiNDR7.1.0affected
FortinetFortiNDR7.0.0 <= 7.0.6affected
FortinetFortiNDR1.5.0 <= 1.5.3affected
FortinetFortiNDR1.4.0affected
FortinetFortiNDR1.3.0 <= 1.3.1affected
FortinetFortiNDR1.2.0affected
FortinetFortiNDR1.1.0affected
FortinetFortiMail6.4.0 <= 6.4.4affected
FortinetFortiMail6.2.0 <= 6.2.6affected
FortinetFortiMail6.0.0 <= 6.0.10affected
FortinetFortiMail5.4.0 <= 5.4.12affected
FortinetFortiMail5.3.12 <= 5.3.13affected
FortinetFortiMail5.3.0 <= 5.3.10affected
FortinetFortiMail5.2.0 <= 5.2.10affected
FortinetFortiMail5.1.0 <= 5.1.7affected
FortinetFortiMail5.0.0 <= 5.0.11affected

Weaknesses

  • CWE-120: Execute unauthorized code or commands

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References