vulnerability
Fortinet FortiOS: NULL Pointer Dereference (CVE-2023-33306)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:N/I:N/A:C) | Jun 16, 2023 | Jun 26, 2023 | Jan 28, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:N/I:N/A:C)
Published
Jun 16, 2023
Added
Jun 26, 2023
Modified
Jan 28, 2025
Description
A null pointer dereference in Fortinet FortiOS before 7.2.5, before 7.0.11 and before 6.4.13, FortiProxy before 7.2.4 and before 7.0.10 allows attacker to denial of sslvpn service via specifically crafted request in bookmark parameter.
Solution(s)
fortios-upgrade-6_4_13fortios-upgrade-7_0_11fortios-upgrade-7_2_5
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.