CVE-2023-36641
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A numeric truncation error in Fortinet FortiProxy version 7.2.0 through 7.2.4, FortiProxy version 7.0.0 through 7.0.10, FortiProxy 2.0 all versions, FortiProxy 1.2 all versions, FortiProxy 1.1, all versions, FortiProxy 1.0 all versions, FortiOS version 7.4.0, FortiOS version 7.2.0 through 7.2.5, FortiOS version 7.0.0 through 7.0.12, FortiOS 6.4 all versions, FortiOS 6.2 all versions, FortiOS 6.0 all versions allows attacker to denial of service via specifically crafted HTTP requests.
Un error de truncamiento numérico en Fortinet FortiProxy versión 7.2.0 a 7.2.4, FortiProxy versión 7.0.0 a 7.0.10, FortiProxy 2.0 todas las versiones, FortiProxy 1.2 todas las versiones, FortiProxy 1.1, todas las versiones, FortiProxy 1.0 todas las versiones, FortiOS versión 7.4 .0, FortiOS versión 7.2.0 a 7.2.5, FortiOS versión 7.0.0 a 7.0.12, FortiOS 6.4 todas las versiones, FortiOS 6.2 todas las versiones, FortiOS 6.0 todas las versiones permiten al atacante denegar el servicio a través de solicitudes HTTP específicamente manipuladas.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2023-06-25 CVE Reserved
- 2023-11-14 CVE Published
- 2024-08-30 CVE Updated
- 2024-11-20 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-197: Numeric Truncation Error
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://fortiguard.com/psirt/FG-IR-23-151 | 2023-11-20 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Fortinet Search vendor "Fortinet" | Fortiproxy Search vendor "Fortinet" for product "Fortiproxy" | >= 1.0.0 <= 1.0.7 Search vendor "Fortinet" for product "Fortiproxy" and version " >= 1.0.0 <= 1.0.7" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortiproxy Search vendor "Fortinet" for product "Fortiproxy" | >= 1.1.0 <= 1.1.6 Search vendor "Fortinet" for product "Fortiproxy" and version " >= 1.1.0 <= 1.1.6" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortiproxy Search vendor "Fortinet" for product "Fortiproxy" | >= 1.2.0 <= 1.2.13 Search vendor "Fortinet" for product "Fortiproxy" and version " >= 1.2.0 <= 1.2.13" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortiproxy Search vendor "Fortinet" for product "Fortiproxy" | >= 2.0.0 <= 2.0.13 Search vendor "Fortinet" for product "Fortiproxy" and version " >= 2.0.0 <= 2.0.13" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortiproxy Search vendor "Fortinet" for product "Fortiproxy" | >= 7.0.0 <= 7.0.10 Search vendor "Fortinet" for product "Fortiproxy" and version " >= 7.0.0 <= 7.0.10" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortiproxy Search vendor "Fortinet" for product "Fortiproxy" | >= 7.2.0 <= 7.2.4 Search vendor "Fortinet" for product "Fortiproxy" and version " >= 7.2.0 <= 7.2.4" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortios Search vendor "Fortinet" for product "Fortios" | >= 6.0.0 <= 6.0.17 Search vendor "Fortinet" for product "Fortios" and version " >= 6.0.0 <= 6.0.17" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortios Search vendor "Fortinet" for product "Fortios" | >= 6.2.0 <= 6.2.15 Search vendor "Fortinet" for product "Fortios" and version " >= 6.2.0 <= 6.2.15" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortios Search vendor "Fortinet" for product "Fortios" | >= 6.4.0 <= 6.4.14 Search vendor "Fortinet" for product "Fortios" and version " >= 6.4.0 <= 6.4.14" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortios Search vendor "Fortinet" for product "Fortios" | >= 7.0.0 <= 7.0.12 Search vendor "Fortinet" for product "Fortios" and version " >= 7.0.0 <= 7.0.12" | - |
Affected
| ||||||
| Fortinet Search vendor "Fortinet" | Fortios Search vendor "Fortinet" for product "Fortios" | >= 7.2.0 <= 7.2.5 Search vendor "Fortinet" for product "Fortios" and version " >= 7.2.0 <= 7.2.5" | - |
Affected
| ||||||