CVE-2023-36639 | Fortinet FortiOS/FortiProxy/FortiPAM HTTPSd Daemon format string (FG-IR-23-138)

Posted by Angelo Barbosa | Dec 12, 2023 | CVE

A vulnerability has been found in Fortinet FortiOS, FortiProxy and FortiPAM and classified as critical. Affected by this vulnerability is an unknown functionality of the component HTTPSd Daemon. The manipulation leads to format string.

This vulnerability is known as CVE-2023-36639. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-36639 | Fortinet FortiOS/FortiProxy/FortiPAM HTTPSd Daemon format string (FG-IR-23-138)

Related Posts

CVE-2023-51971 | Tenda AX1803 1.0.0.1 getIptvInfo stack-based overflow

CVE-2022-48841 | Linux Kernel up to 5.16.16 ice_update_vsi_tx_ring_stats null pointer dereference (2397270ec97c/f153546913ba)

CVE-2024-36391 | MileSight DeviceHub key management

CVE-2024-23678 | Splunk Enterprise up to 9.0.7/9.1.2 on Windows deserialization (SVD-2024-0108)