CVE-2023-25605

A improper access control vulnerability in Fortinet FortiSOAR 7.3.0 - 7.3.1 allows an attacker authenticated on the administrative interface to perform unauthorized actions via crafted HTTP requests.

Published: Mar 7, 2023
Updated: Apr 14, 2023
CVE: CVE-2023-25605
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.2
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
fortinet / fortisoar	7.3.0	7.3.2

https://fortiguard.com/psirt/FG-IR-23-050

Vulnerability Database

289,782

CVE-2023-25605