Relative Path Traversal in Fortinet FortiWLM Affects Multiple Versions
CVE-2023-42783

7.3HIGH

Key Information:

Vendor: Fortinet
Status: Fortiwlm
Vendor: CVE Published:; 14 November 2023

What is CVE-2023-42783?

FortiWLM, a wireless LAN controller by Fortinet, is impacted by a relative path traversal vulnerability that allows an attacker to read arbitrary files on the system. This issue affects multiple versions, from 8.6.0 through 8.6.5, as well as earlier versions down to 8.2.2. Attackers can exploit this vulnerability through specially crafted HTTP requests to gain unauthorized access to sensitive information, thus highlighting the importance of timely software updates and security patches.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

FortiWLM 8.6.0 <= 8.6.6

FortiWLM 8.5.0 <= 8.5.4

FortiWLM 8.4.0 <= 8.4.2

References

https://fortiguard.com/psirt/FG-IR-23-143

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 14, 2023
Vulnerability Reserved
Sep 14, 2023

JSON

Fortinet

What is CVE-2023-42783?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.