ГлавнаяУязвимости → CVE-2023-45590
9.6критическая

CVE-2023-45590

Описание

An improper control of generation of code ('code injection') in Fortinet FortiClientLinux version 7.2.0, 7.0.6 through 7.0.10 and 7.0.3 through 7.0.4 allows attacker to execute unauthorized code or commands via tricking a FortiClientLinux user into visiting a malicious website

Затрагиваемое ПО
Fortinet Forticlient
CVSS
Балл9.6 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Источники
https://fortiguard.com/psirt/FG-IR-23-087https://fortiguard.com/psirt/FG-IR-23-087