CVE-2023-48788: Pervasive SQL injection in DAS component
First published: Tue Mar 12 2024(Updated: )
A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets.
Credit: psirt@fortinet.com psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| fortinet FortiClient endpoint management server | ||
| Fortinet FortiClient | >=7.2.0<=7.2.2 | |
| Fortinet FortiClient | >=7.0.1<=7.0.10 | |
| Fortinet FortiClient EMS Cloud | >=7.0.1<7.0.11 | |
| Fortinet FortiClient EMS Cloud | >=7.2.0<7.2.3 |
Remedy
Please upgrade to FortiClientEMS version 7.2.3 or above Please upgrade to FortiClientEMS version 7.0.11 or above
Remedy
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.theregister.com/2024/03/13/patch_tuesday_march_2024/
- https://www.bleepingcomputer.com/news/security/fortinet-warns-of-critical-rce-bug-in-endpoint-management-software/
- https://www.theregister.com/2024/03/18/more_than_133000_fortinet_appliances/
- https://www.bleepingcomputer.com/news/security/exploit-released-for-fortinet-rce-bug-used-in-attacks-patch-now/
- https://fortiguard.com/psirt/FG-IR-24-007
- https://www.theregister.com/2024/11/27/salt_typhoons_us_telcos/
- https://www.fortiguard.com/psirt/FG-IR-24-007;
- https://nvd.nist.gov/vuln/detail/CVE-2023-48788
- https://www.fortiguard.com/psirt/cvrf/FG-IR-24-007
- https://www.fortiguard.com/psirt/FG-IR-24-007
- https://www.darkreading.com/threat-intelligence/microsoft-russian-sandworm-apt-exploits-edge-bugs-globally
- https://www.theregister.com/2025/02/12/russias_sandworm_caught_stealing_credentials/
Peer vulnerabilities
(Found alongside the following vulnerabilities)
Frequently Asked Questions
What is the severity of CVE-2023-48788?
CVE-2023-48788 is considered a critical vulnerability due to its potential to allow unauthorized code execution.
How do I fix CVE-2023-48788?
To mitigate CVE-2023-48788, update your FortiClient EMS to version 7.2.3 or 7.0.11 or later.
Which versions of FortiClient EMS are affected by CVE-2023-48788?
CVE-2023-48788 affects FortiClient EMS versions 7.2.0 through 7.2.2 and 7.0.1 through 7.0.10.
What type of vulnerability is CVE-2023-48788 classified as?
CVE-2023-48788 is classified as an SQL injection vulnerability.
What can an attacker achieve by exploiting CVE-2023-48788?
An attacker can execute unauthorized code or commands on affected FortiClient EMS instances by exploiting CVE-2023-48788.
- agent/type
- collector/the-register
- source/The Register
- alias/CVE-2024-21407
- alias/CVE-2024-21408
- alias/CVE-2024-21334
- alias/CVE-2024-21400
- alias/CVE-2023-32666
- alias/CVE-2023-32282
- alias/CVE-2024-2193
- alias/CVE-2023-20214
- alias/CVE-2024-20337
- alias/CVE-2024-0039
- alias/CVE-2024-23717
- alias/CVE-2023-42789
- alias/CVE-2023-42790
- alias/CVE-2023-48788
- alias/CVE-2023-47534
- alias/CVE-2023-36554
- alias/CVE-2024-23112
- alias/CVE-2023-46717
- collector/bleeping-computer
- source/BleepingComputer
- alias/CVE-2024-21762
- alias/CVE-2022-42475
- alias/CVE-2023-27997
- alias/CVE-2022-40684
- agent/weakness
- agent/remedy
- agent/title
- agent/first-publish-date
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/author
- alias/CVE-2023-46805
- alias/CVE-2024-21887
- alias/CVE-2022-3236
- alias/CVE-2021-26855
- alias/CVE-2021-26857
- alias/CVE-2021-26858
- alias/CVE-2021-27065
- agent/last-modified-date
- exploited/true
- ransomware/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/fortiguard-psirt
- source/FortiGuard
- collector/nvd-api
- source/NVD
- agent/softwarecombine
- collector/nvd-cve
- collector/darkreading
- source/Dark Reading
- alias/CVE-2022-41352
- alias/CVE-2021-34473
- alias/CVE-2023-23397
- alias/CVE-2024-1709
- agent/source
- agent/references
- agent/severity
- agent/tags
- agent/event
- agent/trending
- agent/news-ai
- vendor/fortinet
- canonical/fortinet forticlient endpoint management server
- canonical/fortinet forticlient
- version/fortinet forticlient/7.2.0
- version/fortinet forticlient/7.2.2
- version/fortinet forticlient/7.0.1
- version/fortinet forticlient/7.0.10
- canonical/fortinet forticlient ems cloud
- version/fortinet forticlient ems cloud/7.0.1
- version/fortinet forticlient ems cloud/7.2.0