CVE-2023-40714: 
FortiSIEM vulnerability analysis and mitigation

A relative path traversal vulnerability was discovered in Fortinet FortiSIEM affecting multiple versions including 7.0.0, 6.7.0 through 6.7.2, 6.6.0 through 6.6.3, 6.5.1, and 6.5.0. The vulnerability was internally discovered by Lance Yeaw from ETAC team and was assigned CVE-2023-40714 with a Critical CVSS v3.1 score of 9.9 (Fortinet PSIRT, NVD).

The vulnerability is classified as a Relative Path Traversal (CWE-23) in FortiSIEM file upload components. It allows an authenticated attacker with low privileges to perform privilege escalation through specifically crafted HTTP requests targeting the FortiSIEM GUI. The vulnerability received a Critical CVSS v3.1 Base Score of 9.9 with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H (Fortinet PSIRT).

The successful exploitation of this vulnerability allows attackers to escalate their privileges and replace arbitrary files on the underlying filesystem, potentially leading to complete system compromise. Given the Critical CVSS score and the ability to manipulate system files, this vulnerability poses a significant security risk to affected FortiSIEM installations (Fortinet PSIRT).

Fortinet has released patches to address this vulnerability. Organizations are advised to upgrade to FortiSIEM version 7.0.1 or above, version 6.7.4 or above, version 6.6.4 or above, version 6.5.2 or above, or version 6.4.3 or above, depending on their current version (Fortinet PSIRT).