Log Forgery Vulnerability in Fortinet FortiWeb

Log Forgery Vulnerability in Fortinet FortiWeb

CVE-2023-46713 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

An improper output neutralization for logs in Fortinet FortiWeb 6.2.0 - 6.2.8, 6.3.0 - 6.3.23, 7.0.0 - 7.0.9, 7.2.0 - 7.2.5 and 7.4.0 may allow an attacker to forge traffic logs via a crafted URL of the web application.

Learn more about our Cis Benchmark Audit For Fortinet.