fkie_nvd - fkie_cve-2023-25610

fkie_cve-2023-25610

Vulnerability from fkie_nvd

Published

2025-03-24 16:15

Modified

2025-03-27 16:44

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.6, version 6.4.0 through 6.4.11 and version 6.2.12 and below, FortiProxy version 7.2.0 through 7.2.2, version 7.0.0 through 7.0.8, version 2.0.12 and below and FortiOS-6K7K version 7.0.5, version 6.4.0 through 6.4.10 and version 6.2.0 through 6.2.10 and below allows a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.

References

▼	URL	Tags
	psirt@fortinet.com	https://fortiguard.com/psirt/FG-IR-23-001

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.6, version 6.4.0 through 6.4.11 and version 6.2.12 and below, FortiProxy version 7.2.0 through 7.2.2, version 7.0.0 through 7.0.8, version 2.0.12 and below and FortiOS-6K7K version 7.0.5, version 6.4.0 through 6.4.10 and version 6.2.0 through 6.2.10 and below allows a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.",
      },
      {
         lang: "es",
         value: "Una vulnerabilidad de suscripción de búfer ('desbordamiento de búfer') en la interfaz administrativa de Fortinet FortiOS versión 7.2.0 a 7.2.3, versión 7.0.0 a 7.0.6, versión 6.4.0 a 6.4.11 y versión 6.2.12 y anteriores, FortiProxy versión 7.2.0 a 7.2.2, versión 7.0.0 a 7.0.8, versión 2.0.12 y anteriores y FortiOS-6K7K versión 7.0.5, versión 6.4.0 a 6.4.10 y versión 6.2.0 a 6.2.10 y anteriores permite a un atacante remoto no autenticado ejecutar código o comandos arbitrarios a través de solicitudes específicamente manipuladas.",
      },
   ],
   id: "CVE-2023-25610",
   lastModified: "2025-03-27T16:44:44.143",
   metrics: {
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "psirt@fortinet.com",
            type: "Secondary",
         },
      ],
   },
   published: "2025-03-24T16:15:17.273",
   references: [
      {
         source: "psirt@fortinet.com",
         url: "https://fortiguard.com/psirt/FG-IR-23-001",
      },
   ],
   sourceIdentifier: "psirt@fortinet.com",
   vulnStatus: "Awaiting Analysis",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-124",
            },
         ],
         source: "psirt@fortinet.com",
         type: "Primary",
      },
   ],
}

cve-2023-25610

Vulnerability from cvelistv5

Published

2025-03-24 15:39

Modified

2025-03-24 18:42

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C

Summary

References

▼	URL	Tags
	https://fortiguard.com/psirt/FG-IR-23-001

Impacted products

Vendor

Product

Version

▼

Fortinet

FortiSwitchManager

Version: 7.2.0 ≤ 7.2.1
Version: 7.0.0 ≤ 7.0.1

Fortinet	FortiAnalyzer	Version: 7.2.0 Version: 7.0.0 ≤ 7.0.4 Version: 6.4.0 ≤ 6.4.11 Version: 6.2.0 ≤ 6.2.10 Version: 6.0.0 ≤ 6.0.11 cpe:2.3:o:fortinet:fortianalyzer:7.2.0:::::::* cpe:2.3:o:fortinet:fortianalyzer:7.0.4:::::::* cpe:2.3:o:fortinet:fortianalyzer:7.0.3:::::::* cpe:2.3:o:fortinet:fortianalyzer:7.0.2:::::::* cpe:2.3:o:fortinet:fortianalyzer:7.0.1:::::::* cpe:2.3:o:fortinet:fortianalyzer:7.0.0:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.11:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.10:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.9:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.8:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.7:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.6:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.5:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.4:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.3:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.2:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.1:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.4.0:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.10:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.9:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.8:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.7:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.6:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.5:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.4:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.3:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.2:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.1:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.2.0:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.11:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.10:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.9:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.8:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.7:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.6:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.5:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.4:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.3:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.2:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.1:::::::* cpe:2.3:o:fortinet:fortianalyzer:6.0.0:::::::*
Fortinet	FortiOS-6K7K	Version: 7.0.5 Version: 6.4.10 Version: 6.4.8 Version: 6.4.6 Version: 6.4.2 Version: 6.2.9 ≤ 6.2.12 Version: 6.2.6 ≤ 6.2.7 Version: 6.2.4 Version: 6.0.12 ≤ 6.0.18 Version: 6.0.10
Fortinet	FortiProxy	Version: 7.2.0 ≤ 7.2.2 Version: 7.0.0 ≤ 7.0.8 Version: 2.0.0 ≤ 2.0.14 Version: 1.2.0 ≤ 1.2.13 Version: 1.1.0 ≤ 1.1.6
Fortinet	FortiOS	Version: 7.2.0 ≤ 7.2.3 Version: 7.0.0 ≤ 7.0.9 Version: 6.4.0 ≤ 6.4.11 Version: 6.2.0 ≤ 6.2.12 Version: 6.0.0 ≤ 6.0.18 Version: 5.6.0 ≤ 5.6.14 Version: 5.4.0 ≤ 5.4.13 Version: 5.2.0 ≤ 5.2.15 Version: 5.0.0 ≤ 5.0.14 cpe:2.3:o:fortinet:fortios:7.2.3:::::::* cpe:2.3:o:fortinet:fortios:7.2.2:::::::* cpe:2.3:o:fortinet:fortios:7.2.1:::::::* cpe:2.3:o:fortinet:fortios:7.2.0:::::::* cpe:2.3:o:fortinet:fortios:7.0.9:::::::* cpe:2.3:o:fortinet:fortios:7.0.8:::::::* cpe:2.3:o:fortinet:fortios:7.0.7:::::::* cpe:2.3:o:fortinet:fortios:7.0.6:::::::* cpe:2.3:o:fortinet:fortios:7.0.5:::::::* cpe:2.3:o:fortinet:fortios:7.0.4:::::::* cpe:2.3:o:fortinet:fortios:7.0.3:::::::* cpe:2.3:o:fortinet:fortios:7.0.2:::::::* cpe:2.3:o:fortinet:fortios:7.0.1:::::::* cpe:2.3:o:fortinet:fortios:7.0.0:::::::* cpe:2.3:o:fortinet:fortios:6.4.11:::::::* cpe:2.3:o:fortinet:fortios:6.4.10:::::::* cpe:2.3:o:fortinet:fortios:6.4.9:::::::* cpe:2.3:o:fortinet:fortios:6.4.8:::::::* cpe:2.3:o:fortinet:fortios:6.4.7:::::::* cpe:2.3:o:fortinet:fortios:6.4.6:::::::* cpe:2.3:o:fortinet:fortios:6.4.5:::::::* cpe:2.3:o:fortinet:fortios:6.4.4:::::::* cpe:2.3:o:fortinet:fortios:6.4.3:::::::* cpe:2.3:o:fortinet:fortios:6.4.2:::::::* cpe:2.3:o:fortinet:fortios:6.4.1:::::::* cpe:2.3:o:fortinet:fortios:6.4.0:::::::* cpe:2.3:o:fortinet:fortios:6.2.12:::::::* cpe:2.3:o:fortinet:fortios:6.2.11:::::::* cpe:2.3:o:fortinet:fortios:6.2.10:::::::* cpe:2.3:o:fortinet:fortios:6.2.9:::::::* cpe:2.3:o:fortinet:fortios:6.2.8:::::::* cpe:2.3:o:fortinet:fortios:6.2.7:::::::* cpe:2.3:o:fortinet:fortios:6.2.6:::::::* cpe:2.3:o:fortinet:fortios:6.2.5:::::::* cpe:2.3:o:fortinet:fortios:6.2.4:::::::* cpe:2.3:o:fortinet:fortios:6.2.3:::::::* cpe:2.3:o:fortinet:fortios:6.2.2:::::::* cpe:2.3:o:fortinet:fortios:6.2.1:::::::* cpe:2.3:o:fortinet:fortios:6.2.0:::::::* cpe:2.3:o:fortinet:fortios:6.0.18:::::::* cpe:2.3:o:fortinet:fortios:6.0.17:::::::* cpe:2.3:o:fortinet:fortios:6.0.16:::::::* cpe:2.3:o:fortinet:fortios:6.0.15:::::::* cpe:2.3:o:fortinet:fortios:6.0.14:::::::* cpe:2.3:o:fortinet:fortios:6.0.13:::::::* cpe:2.3:o:fortinet:fortios:6.0.12:::::::* cpe:2.3:o:fortinet:fortios:6.0.11:::::::* cpe:2.3:o:fortinet:fortios:6.0.10:::::::* cpe:2.3:o:fortinet:fortios:6.0.9:::::::* cpe:2.3:o:fortinet:fortios:6.0.8:::::::* cpe:2.3:o:fortinet:fortios:6.0.7:::::::* cpe:2.3:o:fortinet:fortios:6.0.6:::::::* cpe:2.3:o:fortinet:fortios:6.0.5:::::::* cpe:2.3:o:fortinet:fortios:6.0.4:::::::* cpe:2.3:o:fortinet:fortios:6.0.3:::::::* cpe:2.3:o:fortinet:fortios:6.0.2:::::::* cpe:2.3:o:fortinet:fortios:6.0.1:::::::* cpe:2.3:o:fortinet:fortios:6.0.0:::::::* cpe:2.3:o:fortinet:fortios:5.6.14:::::::* cpe:2.3:o:fortinet:fortios:5.6.13:::::::* cpe:2.3:o:fortinet:fortios:5.6.12:::::::* cpe:2.3:o:fortinet:fortios:5.6.11:::::::* cpe:2.3:o:fortinet:fortios:5.6.10:::::::* cpe:2.3:o:fortinet:fortios:5.6.9:::::::* cpe:2.3:o:fortinet:fortios:5.6.8:::::::* cpe:2.3:o:fortinet:fortios:5.6.7:::::::* cpe:2.3:o:fortinet:fortios:5.6.6:::::::* cpe:2.3:o:fortinet:fortios:5.6.5:::::::* cpe:2.3:o:fortinet:fortios:5.6.4:::::::* cpe:2.3:o:fortinet:fortios:5.6.3:::::::* cpe:2.3:o:fortinet:fortios:5.6.2:::::::* cpe:2.3:o:fortinet:fortios:5.6.1:::::::* cpe:2.3:o:fortinet:fortios:5.6.0:::::::* cpe:2.3:o:fortinet:fortios:5.4.13:::::::* cpe:2.3:o:fortinet:fortios:5.4.12:::::::* cpe:2.3:o:fortinet:fortios:5.4.11:::::::* cpe:2.3:o:fortinet:fortios:5.4.10:::::::* cpe:2.3:o:fortinet:fortios:5.4.9:::::::* cpe:2.3:o:fortinet:fortios:5.4.8:::::::* cpe:2.3:o:fortinet:fortios:5.4.7:::::::* cpe:2.3:o:fortinet:fortios:5.4.6:::::::* cpe:2.3:o:fortinet:fortios:5.4.5:::::::* cpe:2.3:o:fortinet:fortios:5.4.4:::::::* cpe:2.3:o:fortinet:fortios:5.4.3:::::::* cpe:2.3:o:fortinet:fortios:5.4.2:::::::* cpe:2.3:o:fortinet:fortios:5.4.1:::::::* cpe:2.3:o:fortinet:fortios:5.4.0:::::::* cpe:2.3:o:fortinet:fortios:5.2.15:::::::* cpe:2.3:o:fortinet:fortios:5.2.14:::::::* cpe:2.3:o:fortinet:fortios:5.2.13:::::::* cpe:2.3:o:fortinet:fortios:5.2.12:::::::* cpe:2.3:o:fortinet:fortios:5.2.11:::::::* cpe:2.3:o:fortinet:fortios:5.2.10:::::::* cpe:2.3:o:fortinet:fortios:5.2.9:::::::* cpe:2.3:o:fortinet:fortios:5.2.8:::::::* cpe:2.3:o:fortinet:fortios:5.2.7:::::::* cpe:2.3:o:fortinet:fortios:5.2.6:::::::* cpe:2.3:o:fortinet:fortios:5.2.5:::::::* cpe:2.3:o:fortinet:fortios:5.2.4:::::::* cpe:2.3:o:fortinet:fortios:5.2.3:::::::* cpe:2.3:o:fortinet:fortios:5.2.2:::::::* cpe:2.3:o:fortinet:fortios:5.2.1:::::::* cpe:2.3:o:fortinet:fortios:5.2.0:::::::* cpe:2.3:o:fortinet:fortios:5.0.14:::::::* cpe:2.3:o:fortinet:fortios:5.0.13:::::::* cpe:2.3:o:fortinet:fortios:5.0.12:::::::* cpe:2.3:o:fortinet:fortios:5.0.11:::::::* cpe:2.3:o:fortinet:fortios:5.0.10:::::::* cpe:2.3:o:fortinet:fortios:5.0.9:::::::* cpe:2.3:o:fortinet:fortios:5.0.8:::::::* cpe:2.3:o:fortinet:fortios:5.0.7:::::::* cpe:2.3:o:fortinet:fortios:5.0.6:::::::* cpe:2.3:o:fortinet:fortios:5.0.5:::::::* cpe:2.3:o:fortinet:fortios:5.0.4:::::::* cpe:2.3:o:fortinet:fortios:5.0.3:::::::* cpe:2.3:o:fortinet:fortios:5.0.2:::::::* cpe:2.3:o:fortinet:fortios:5.0.1:::::::* cpe:2.3:o:fortinet:fortios:5.0.0:::::::*
Fortinet	FortiManager	Version: 7.2.0 Version: 7.0.0 ≤ 7.0.4 Version: 6.4.0 ≤ 6.4.11 Version: 6.2.0 ≤ 6.2.10 Version: 6.0.0 ≤ 6.0.11 cpe:2.3:o:fortinet:fortimanager:7.2.0:::::::* cpe:2.3:o:fortinet:fortimanager:7.0.4:::::::* cpe:2.3:o:fortinet:fortimanager:7.0.3:::::::* cpe:2.3:o:fortinet:fortimanager:7.0.2:::::::* cpe:2.3:o:fortinet:fortimanager:7.0.1:::::::* cpe:2.3:o:fortinet:fortimanager:7.0.0:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.11:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.10:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.9:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.8:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.7:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.6:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.5:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.4:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.3:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.2:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.1:::::::* cpe:2.3:o:fortinet:fortimanager:6.4.0:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.10:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.9:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.8:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.7:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.6:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.5:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.4:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.3:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.2:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.1:::::::* cpe:2.3:o:fortinet:fortimanager:6.2.0:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.11:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.10:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.9:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.8:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.7:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.6:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.5:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.4:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.3:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.2:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.1:::::::* cpe:2.3:o:fortinet:fortimanager:6.0.0:::::::*
Fortinet	FortiWeb	Version: 7.2.0 ≤ 7.2.1 Version: 7.0.0 ≤ 7.0.6 Version: 6.4.0 ≤ 6.4.2 Version: 6.3.0 ≤ 6.3.22 Version: 6.2.0 ≤ 6.2.7 Version: 6.1.0 ≤ 6.1.3

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-25610",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "yes",
                           },
                           {
                              "Technical Impact": "total",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2025-03-24T16:26:39.771566Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2025-03-24T18:42:44.673Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               cpes: [],
               defaultStatus: "unaffected",
               product: "FortiSwitchManager",
               vendor: "Fortinet",
               versions: [
                  {
                     lessThanOrEqual: "7.2.1",
                     status: "affected",
                     version: "7.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "7.0.1",
                     status: "affected",
                     version: "7.0.0",
                     versionType: "semver",
                  },
               ],
            },
            {
               cpes: [
                  "cpe:2.3:o:fortinet:fortianalyzer:7.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:7.0.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:7.0.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:7.0.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:7.0.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:7.0.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.4.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortianalyzer:6.0.0:*:*:*:*:*:*:*",
               ],
               defaultStatus: "unaffected",
               product: "FortiAnalyzer",
               vendor: "Fortinet",
               versions: [
                  {
                     status: "affected",
                     version: "7.2.0",
                  },
                  {
                     lessThanOrEqual: "7.0.4",
                     status: "affected",
                     version: "7.0.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.4.11",
                     status: "affected",
                     version: "6.4.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.2.10",
                     status: "affected",
                     version: "6.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.0.11",
                     status: "affected",
                     version: "6.0.0",
                     versionType: "semver",
                  },
               ],
            },
            {
               cpes: [],
               defaultStatus: "unaffected",
               product: "FortiOS-6K7K",
               vendor: "Fortinet",
               versions: [
                  {
                     status: "affected",
                     version: "7.0.5",
                  },
                  {
                     status: "affected",
                     version: "6.4.10",
                  },
                  {
                     status: "affected",
                     version: "6.4.8",
                  },
                  {
                     status: "affected",
                     version: "6.4.6",
                  },
                  {
                     status: "affected",
                     version: "6.4.2",
                  },
                  {
                     lessThanOrEqual: "6.2.12",
                     status: "affected",
                     version: "6.2.9",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.2.7",
                     status: "affected",
                     version: "6.2.6",
                     versionType: "semver",
                  },
                  {
                     status: "affected",
                     version: "6.2.4",
                  },
                  {
                     lessThanOrEqual: "6.0.18",
                     status: "affected",
                     version: "6.0.12",
                     versionType: "semver",
                  },
                  {
                     status: "affected",
                     version: "6.0.10",
                  },
               ],
            },
            {
               cpes: [],
               defaultStatus: "unaffected",
               product: "FortiProxy",
               vendor: "Fortinet",
               versions: [
                  {
                     lessThanOrEqual: "7.2.2",
                     status: "affected",
                     version: "7.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "7.0.8",
                     status: "affected",
                     version: "7.0.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "2.0.14",
                     status: "affected",
                     version: "2.0.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "1.2.13",
                     status: "affected",
                     version: "1.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "1.1.6",
                     status: "affected",
                     version: "1.1.0",
                     versionType: "semver",
                  },
               ],
            },
            {
               cpes: [
                  "cpe:2.3:o:fortinet:fortios:7.2.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.2.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.2.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.4.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.12:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.18:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.17:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.16:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.15:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.14:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.13:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.12:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:6.0.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.14:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.13:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.12:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.6.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.13:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.12:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.4.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.15:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.14:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.13:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.12:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.14:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.13:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.12:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortios:5.0.0:*:*:*:*:*:*:*",
               ],
               defaultStatus: "unaffected",
               product: "FortiOS",
               vendor: "Fortinet",
               versions: [
                  {
                     lessThanOrEqual: "7.2.3",
                     status: "affected",
                     version: "7.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "7.0.9",
                     status: "affected",
                     version: "7.0.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.4.11",
                     status: "affected",
                     version: "6.4.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.2.12",
                     status: "affected",
                     version: "6.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.0.18",
                     status: "affected",
                     version: "6.0.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "5.6.14",
                     status: "affected",
                     version: "5.6.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "5.4.13",
                     status: "affected",
                     version: "5.4.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "5.2.15",
                     status: "affected",
                     version: "5.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "5.0.14",
                     status: "affected",
                     version: "5.0.0",
                     versionType: "semver",
                  },
               ],
            },
            {
               cpes: [
                  "cpe:2.3:o:fortinet:fortimanager:7.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:7.0.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:7.0.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:7.0.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:7.0.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:7.0.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.4.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.11:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.10:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.9:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.8:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.7:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.6:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.5:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.4:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.3:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.2:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.1:*:*:*:*:*:*:*",
                  "cpe:2.3:o:fortinet:fortimanager:6.0.0:*:*:*:*:*:*:*",
               ],
               defaultStatus: "unaffected",
               product: "FortiManager",
               vendor: "Fortinet",
               versions: [
                  {
                     status: "affected",
                     version: "7.2.0",
                  },
                  {
                     lessThanOrEqual: "7.0.4",
                     status: "affected",
                     version: "7.0.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.4.11",
                     status: "affected",
                     version: "6.4.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.2.10",
                     status: "affected",
                     version: "6.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.0.11",
                     status: "affected",
                     version: "6.0.0",
                     versionType: "semver",
                  },
               ],
            },
            {
               cpes: [],
               defaultStatus: "unaffected",
               product: "FortiWeb",
               vendor: "Fortinet",
               versions: [
                  {
                     lessThanOrEqual: "7.2.1",
                     status: "affected",
                     version: "7.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "7.0.6",
                     status: "affected",
                     version: "7.0.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.4.2",
                     status: "affected",
                     version: "6.4.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.3.22",
                     status: "affected",
                     version: "6.3.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.2.7",
                     status: "affected",
                     version: "6.2.0",
                     versionType: "semver",
                  },
                  {
                     lessThanOrEqual: "6.1.3",
                     status: "affected",
                     version: "6.1.0",
                     versionType: "semver",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.6, version 6.4.0 through 6.4.11 and version 6.2.12 and below, FortiProxy version 7.2.0 through 7.2.2, version 7.0.0 through 7.0.8, version 2.0.12 and below and FortiOS-6K7K version 7.0.5, version 6.4.0 through 6.4.10 and version 6.2.0 through 6.2.10 and below allows a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.",
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 9.3,
                  baseSeverity: "CRITICAL",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C",
                  version: "3.1",
               },
               format: "CVSS",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-124",
                     description: "Execute unauthorized code or commands",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2025-03-24T15:39:48.167Z",
            orgId: "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
            shortName: "fortinet",
         },
         references: [
            {
               name: "https://fortiguard.com/psirt/FG-IR-23-001",
               url: "https://fortiguard.com/psirt/FG-IR-23-001",
            },
         ],
         solutions: [
            {
               lang: "en",
               value: "Please upgrade to FortiOS version 7.4.0 or above\r\nPlease upgrade to FortiOS version 7.2.4 or above\r\nPlease upgrade to FortiOS version 7.0.10 or above\r\nPlease upgrade to FortiOS version 6.4.12 or above\r\nPlease upgrade to FortiOS version 6.2.13 or above\r\nPlease upgrade to FortiWeb version 7.2.2 or above\r\nPlease upgrade to FortiWeb version 7.0.7 or above\r\nPlease upgrade to FortiWeb version 6.4.3 or above\r\nPlease upgrade to FortiWeb version 6.3.23 or above\r\nPlease upgrade to FortiWeb version 6.2.8 or above\r\nPlease upgrade to FortiWeb version 6.1.4 or above\r\nPlease upgrade to upcoming FortiOS version 6.0.17 or above\r\nPlease upgrade to FortiSwitchManager version 7.2.2 or above\r\nPlease upgrade to FortiSwitchManager version 7.0.2 or above\r\nPlease upgrade to FortiProxy version 7.2.3 or above\r\nPlease upgrade to FortiProxy version 7.0.9 or above\r\nPlease upgrade to FortiManager version 7.2.1 or above\r\nPlease upgrade to FortiManager version 7.0.5 or above\r\nPlease upgrade to FortiManager version 6.4.12 or above\r\nPlease upgrade to FortiManager version 6.2.11 or above\r\nPlease upgrade to FortiManager version 6.0.12 or above\r\nPlease upgrade to FortiOS-6K7K version 7.0.10 or above\r\nPlease upgrade to FortiOS-6K7K version 6.4.12 or above\r\nPlease upgrade to FortiOS-6K7K version 6.2.13 or above\r\nPlease upgrade to FortiAnalyzer version 7.2.1 or above\r\nPlease upgrade to FortiAnalyzer version 7.0.5 or above\r\nPlease upgrade to FortiAnalyzer version 6.4.12 or above\r\nPlease upgrade to FortiAnalyzer version 6.2.11 or above\r\nPlease upgrade to FortiAnalyzer version 6.0.12 or above\r\n\r\n\r\n## Workaround for FortiOS:\r\n\r\n\r\n\r\nDisable HTTP/HTTPS administrative interface\r\n\r\nOR\r\n\r\nLimit IP addresses that can reach the administrative interface:\r\n\r\n\r\n```\r\nconfig firewall address\r\nedit my_allowed_addresses\r\nset subnet Y IP MY SUBNET\r\nend\r\n```\r\n\r\nThen create an Address Group:\r\n\r\n\r\n```\r\nconfig firewall addrgrp\r\nedit MGMT_IPs\r\nset member my_allowed_addresses\r\nend\r\n```\r\n\r\nCreate the Local in Policy to restrict access only to the predefined group on management interface (here: port1):\r\n\r\n\r\n```\r\nconfig firewall local-in-policy\r\nedit 1\r\nset intf port1\r\nset srcaddr MGMT_IPs\r\nset dstaddr all\r\nset action accept\r\nset service HTTPS HTTP\r\nset schedule always\r\nset status enable\r\nnext\r\n\r\n\r\n\r\nedit 2\r\nset intf any\r\nset srcaddr all\r\nset dstaddr all\r\nset action deny\r\nset service HTTPS HTTP\r\nset schedule always\r\nset status enable\r\nend\r\n```\r\n\r\n\r\nIf using non default ports, create appropriate service object for GUI administrative access:\r\n\r\n```\r\nconfig firewall service custom\r\nedit GUI_HTTPS\r\nset tcp-portrange admin-sport\r\nnext\r\nedit GUI_HTTP\r\nset tcp-portrange admin-port\r\nend\r\n```\r\n\r\n\r\nUse these objects instead of \"HTTPS HTTP\" in the local-in policy 1 and 2 below.\r\n\r\n\r\nWhen using an HA reserved management interface, the local in policy needs to be configured slightly differently - please see: \r\n\r\nhttps://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-a-local-in-policy-on-a-HA/ta-p/222005\r\n\r\nPlease contact customer support for assistance.\r\n\r\n\r\n## Workaround for FortiManager and FortiAnalyzer:\r\n\r\n\r\nLimit IP addresses that can reach the administrative interface\r\n\r\n\r\n## Workaround for FortiWeb:\r\n\r\n\r\n\r\nDisable HTTP/HTTPS administrative interface\r\n\r\nOR\r\n\r\nLimit IP addresses that can reach the administrative interface",
            },
         ],
      },
   },
   cveMetadata: {
      assignerOrgId: "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
      assignerShortName: "fortinet",
      cveId: "CVE-2023-25610",
      datePublished: "2025-03-24T15:39:48.167Z",
      dateReserved: "2023-02-08T13:42:03.367Z",
      dateUpdated: "2025-03-24T18:42:44.673Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted