A improper neutralization of formula elements in a csv file in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.10, 6.4.0 through 6.4.9, 6.2.0 through 6.2.9, 6.0.0 through 6.0.8 allows attacker to execute unauthorized code or commands via specially crafted packets.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-23-390 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
15 Mar 2024, 15:10
Type | Values Removed | Values Added |
---|---|---|
First Time |
Fortinet
Fortinet forticlient Endpoint Management Server |
|
CPE | cpe:2.3:a:fortinet:forticlient_endpoint_management_server:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
Summary |
|
|
References | () https://fortiguard.com/psirt/FG-IR-23-390 - Vendor Advisory |
12 Mar 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-03-12 15:15
Updated : 2024-03-15 15:10
NVD link : CVE-2023-47534
Mitre link : CVE-2023-47534
CVE.ORG link : CVE-2023-47534
JSON object : View
Products Affected
fortinet
- forticlient_endpoint_management_server
CWE
CWE-1236
Improper Neutralization of Formula Elements in a CSV File