Fortinet Product Security Update Advisory (CVE-2023-34990)

Dec 19 2024

Overview

An update has been released to address vulnerabilities in Fortinet Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2023-34990

FortiWLM 8.6 versions: 8.6.0 (inclusive) ~ 8.6.5 (inclusive)
FortiWLM 8.5 versions: 8.5.0 (inclusive) ~ 8.5.4 (inclusive)

Resolved Vulnerabilities

Vulnerability that allows remote, unauthenticated attackers to read sensitive files via relative path traversal (CVE-2023-34990)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2023-34990

FortiWLM 8.6 version: 8.6.6 or later version
FortiWLM 8.5 version: 8.5.5 or later version

Referenced Sites

[1] CVE-2023-34990 Detail

https://nvd.nist.gov/vuln/detail/CVE-2023-34990

[2] [FortiWLM] Unauthenticated limited file read vulnerability

https://www.fortiguard.com/psirt/FG-IR-23-144

Fortinet Product Security Update Advisory (CVE-2023-34990)

Apache Tomcat December Vulnerability Security Update Advisory

BeyondTrust Product Security Update Advisory (CVE-2024-12356)

Tags:

Apache Tomcat December Vulnerability Security Update Advisory

BeyondTrust Product Security Update Advisory (CVE-2024-12356)