CVE-2023-41842
A use of externally-controlled format string vulnerability [CWE-134] vulnerability in Fortinet allows a privileged attacker to execute unauthorized code or commands via specially crafted command arguments.
| Software | From | Fixed in |
|---|---|---|
| fortinet / fortianalyzer | 7.2.0 | 7.2.4 |
| fortinet / fortimanager | 7.2.0 | 7.2.4 |
| fortinet / fortimanager | 6.2.0 | 7.0.10 |
| fortinet / fortimanager | 7.4.0 | 7.4.2 |
| fortinet / fortianalyzer | 7.4.0 | 7.4.2 |
| fortinet / fortianalyzer | 6.2.0 | 7.0.10 |
| fortinet / fortianalyzer_big_data | 7.0.1 | 7.0.6.x |
| fortinet / fortianalyzer_big_data | 6.4.5 | 6.4.7.x |
| fortinet / fortianalyzer_big_data | 6.2.5 | 6.2.5.x |
| fortinet / fortianalyzer_big_data | 7.2.0 | 7.2.6 |
| fortinet / fortiportal | 5.3.0 | 6.0.15 |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime