CVE-2023-42786

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 14, 2025

CWE ID 476

Summary

CVE-2023-42786 is a vulnerability impacting various versions of FortiOS, including 7.4.0-7.4.1, 7.2.0-7.2.5, 7.0, 6.4, 6.2, and 6.0. This issue involves a null pointer dereference, which can be exploited by attackers to cause a denial of service. They can achieve this by sending a specially crafted HTTP request. Versions affected by this vulnerability should be updated as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

FortiOS

Affected Vendors

Fortinet

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/srrVsQ
https://www.cve.org/CVERecord?id=CVE-2023-42786
https://nvd.nist.gov/vuln/detail/CVE-2023-42786

Back to Vulnerability Database