{"uuid": "5f7e1ab3-f47c-4211-8f1c-7454f9eef892", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-42784", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7172", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-42784\n\ud83d\udd25 CVSS Score: 5.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:F/RL:X/RC:X)\n\ud83d\udd39 Description: An improper handling of syntactically invalid structure in Fortinet FortiWeb at least verions 7.4.0 through 7.4.6 and 7.2.0 through 7.2.10 and 7.0.0 through 7.0.10 allows attacker to execute unauthorized code or commands via HTTP/S crafted requests.\n\ud83d\udccf Published: 2025-03-11T14:54:28.924Z\n\ud83d\udccf Modified: 2025-03-11T16:10:57.143Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-23-115", "creation_timestamp": "2025-03-11T16:40:24.000000Z"}