Relative Path Traversal Vulnerability in FortiWeb Versions 7.0.1 and Below, 6.4, 6.3, and 6.2

Relative Path Traversal Vulnerability in FortiWeb Versions 7.0.1 and Below, 6.4, 6.3, and 6.2

CVE-2023-23778 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

A relative path traversal vulnerability [CWE-23] in FortiWeb version 7.0.1 and below, 6.4 all versions, 6.3 all versions, 6.2 all versions may allow an authenticated user to obtain unauthorized access to files and data via specifically crafted web requests.

Learn more about our Web App Pen Testing.