CVE-2023-48788
CVE-2023-48788
In short
FortiClientEMS versions 7.0.1–7.0.10 and 7.2.0–7.2.2 contain a SQL injection vulnerability that allows attackers to execute arbitrary code by sending specially crafted packets to the application.
Technical detail
This SQL injection vulnerability (CWE-89) in FortiClientEMS enables unauthenticated remote code execution through malicious SQL queries embedded in network packets; affected versions lack proper input validation and parameterized query mechanisms, allowing attackers to bypass authentication and execute arbitrary commands with system privileges.
Summary generated and translated by AI from the official description.
A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C
Affected products
Fortinet · FortiClientEMSpublic PoCs found — 1
githubgithub.com/horizon3ai/CVE-2023-48788★ 54⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →