CVE-2023-37930

Description

Multiple issues including the use of uninitialized ressources [CWE-908] and excessive iteration [CWE-834] vulnerabilities vulnerability in Fortinet allows a VPN user to corrupt memory potentially leading to code or commands execution via specifically crafted requests.

PUBLISHED Reserved 2023-07-11 | Published 2025-04-08 | Updated 2026-02-26 | Assigner fortinet

Problem types

Execute unauthorized code or commands

Product status

References

fortiguard.com/psirt/FG-IR-23-165

cve.org (CVE-2023-37930)

nvd.nist.gov (CVE-2023-37930)

Download JSON