Multiple vulnerabilities in FortiPortal
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2023-48783 CVE-2023-46712 |
| CWE-ID | CWE-639 CWE-269 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
FortiPortal Server applications / IDS/IPS systems, Firewalls and proxy servers |
| Vendor | Fortinet, Inc |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Authorization bypass through user-controlled key
EUVDB-ID: #VU85221
Risk: Low
CVSSv3.1: 4.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2023-48783
CWE-ID:
CWE-639 - Authorization Bypass Through User-Controlled Key
Exploit availability: No
DescriptionThe vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions. A remote authenticated user with at least read-only permissions can access another organization's endpoints.
MitigationInstall updates from vendor's website.
Vulnerable software versionsFortiPortal: 5.3.0 - 7.2.1
CPE2.3- cpe:2.3:a:fortinet:fortiportal:7.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:fortinet:fortiportal:7.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:fortinet:fortiportal:7.0.5:*:*:*:*:*:*:*
http://www.fortiguard.com/psirt/FG-IR-23-408
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Improper Privilege Management
EUVDB-ID: #VU85219
Risk: Low
CVSSv3.1: 3.3 [CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2023-46712
CWE-ID:
CWE-269 - Improper Privilege Management
Exploit availability: No
DescriptionThe vulnerability allows a remote user to bypass implemented security restrictions.
The vulnerability exists due to improper privilege management. A remote user can add other users outside their IdP.
Install updates from vendor's website.
Vulnerable software versionsFortiPortal: 7.0.0 - 7.2.1
CPE2.3- cpe:2.3:a:fortinet:fortiportal:7.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:fortinet:fortiportal:7.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:fortinet:fortiportal:7.0.5:*:*:*:*:*:*:*
http://www.fortiguard.com/psirt/FG-IR-23-395
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected application in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
