{"uuid": "ce1d5590-df26-4a3a-9f5a-3b8d3896ef60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25606", "type": "seen", "source": "https://t.me/cibsecurity/66404", "content": "\u203c CVE-2023-25606 \u203c\n\nAn improper limitation of a pathname to a restricted directory ('Path Traversal')\u00c2\u00a0vulnerability [CWE-23] in FortiAnalyzer and FortiManager management interface\u00c2\u00a07.2.0 through 7.2.1, 7.0.0 through 7.0.5, 6.4 \u00c2\u00a0all versions may allow a remote and\u00c2\u00a0authenticated attacker to retrieve arbitrary files from the underlying filesystem via specially crafted web requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T20:29:40.000000Z"}