{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-07T12:28:54.168","vulnerabilities":[{"cve":{"id":"CVE-2023-41678","sourceIdentifier":"psirt@fortinet.com","published":"2023-12-13T07:15:17.317","lastModified":"2024-11-21T08:21:28.313","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A double free in Fortinet FortiOS versions 7.0.0 through 7.0.5, FortiPAM version 1.0.0 through 1.0.3, 1.1.0 through 1.1.1 allows attacker to execute unauthorized code or commands via specifically crafted request."},{"lang":"es","value":"Un doble gratuito en las versiones Fortinet FortiOS 7.0.0 a 7.0.5, FortiPAM versión 1.0.0 a 1.0.3, 1.1.0 a 1.1.1 permite a un atacante ejecutar código o comandos no autorizados a través de una solicitud específicamente manipulada."}],"metrics":{"cvssMetricV31":[{"source":"psirt@fortinet.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}]},"weaknesses":[{"source":"psirt@fortinet.com","type":"Secondary","description":[{"lang":"en","value":"CWE-415"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*","matchCriteriaId":"79FEE7F6-F72E-4A43-883C-0CF492DF355B"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*","matchCriteriaId":"FBDFDF02-2136-4DE0-A19B-FE3654ED90A4"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:7.0.2:*:*:*:*:*:*:*","matchCriteriaId":"49D51C9F-CED3-4EA0-89EB-3A63F54B10E7"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:7.0.3:*:*:*:*:*:*:*","matchCriteriaId":"A9341F0B-D2F3-41D6-8FA5-49FDE8F3048B"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:7.0.4:*:*:*:*:*:*:*","matchCriteriaId":"0E0B17DD-6CE0-4DD0-9850-640F24A1AB10"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortios:7.0.5:*:*:*:*:*:*:*","matchCriteriaId":"48D0E8CC-3815-4697-86D0-DC7F66E70520"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortipam:1.0.0:*:*:*:*:*:*:*","matchCriteriaId":"920985C7-18F9-414A-A0B2-8C2FACDDE708"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortipam:1.0.1:*:*:*:*:*:*:*","matchCriteriaId":"4DA50317-AD1F-451A-AB91-96F1791CBBF6"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortipam:1.0.2:*:*:*:*:*:*:*","matchCriteriaId":"BD6728D1-6891-4144-9D5B-EC7C9EE3B044"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortipam:1.0.3:*:*:*:*:*:*:*","matchCriteriaId":"7FFE431F-113D-4DF8-8166-10B8F8EB096C"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortipam:1.1.0:*:*:*:*:*:*:*","matchCriteriaId":"0CC27DCF-F74C-431C-9545-F405D369AF22"},{"vulnerable":true,"criteria":"cpe:2.3:o:fortinet:fortipam:1.1.1:*:*:*:*:*:*:*","matchCriteriaId":"46FB5EB9-00E7-444C-B433-B51460BED34C"}]}]}],"references":[{"url":"https://fortiguard.com/psirt/FG-IR-23-196","source":"psirt@fortinet.com","tags":["Vendor Advisory"]},{"url":"https://fortiguard.com/psirt/FG-IR-23-196","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}