CVE-2023-37931 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-88] in FortiVoice Entreprise version 7.0.0 through 7.…
High CVSS: 8.8

CVE-2023-37931

An improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-88] in FortiVoice Entreprise version 7.0.0 through 7.0.1 and before 6.4.8 allows an authenticated attacker to perform a blind sql injection attack via sending crafted HTTP or HTTPS requests
Vendor
Fortinet
Product
Fortivoice
CWE
CWE-89
Yayın Tarihi
2025-01-14 14:15:26
Güncelleme
2025-07-22 21:25:52
Source Identifier
psirt@fortinet.com
KEV Date Added
-

Kategoriler

CWE-89 Fortivoice HIGH Fortinet 2025

Referanslar

https://fortiguard.com/psirt/FG-IR-23-220