Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An incorrect parsing of numbers with different radices vulnerability [CWE-1389] in FortiProxy version 7.4.3 and below, version 7.2.10 and below, version 7.0.17 and below and FortiOS version 7.4.3 and below, version 7.2.8 and below, version 7.0.15 and below IP address validation feature may permit an unauthenticated attacker to bypass the IP blocklist via crafted requests.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
Vulnerability Type
CWE-1389
Vulnerability Title
Fortinet FortiProxy 安全漏洞
Vulnerability Description
Fortinet FortiProxy是美国飞塔(Fortinet)公司的一种安全的网络代理,通过结合多种检测技术,如Web过滤、DNS过滤、DLP、反病毒、入侵防御和高级威胁保护,可以保护员工免受网络攻击。FortiProxy有助于减少带宽需求,并通过内容和视频缓存优化网络。 Fortinet FortiProxy 存在安全漏洞,该漏洞源于存在不同基数数字的错误解析漏洞,可能允许未经身份验证的攻击者通过精心设计的请求绕过IP黑名单。
CVSS Information
N/A
Vulnerability Type
N/A