CVE-2023-41838: 
Fortinet FortiManager vulnerability analysis and mitigation

CVE-2023-41838 is a vulnerability discovered in FortiManager and FortiAnalyzer that was initially published on October 10, 2023. The vulnerability stems from an improper neutralization of special elements used in an OS Command [CWE-22], which affects multiple versions of FortiManager (from 6.2.0 through 7.4.0) and FortiAnalyzer. The vulnerability was internally discovered and reported by Adham El karn of Fortinet Product Security team (Fortinet Advisory).

The vulnerability is classified as a medium severity issue with a CVSSv3 score of 6.9. It involves an OS command injection vulnerability that could be exploited through the FortiManager CLI. The attack requires local access and low privileges to execute. The vulnerability has been assigned CWE-78 (Improper Neutralization of Special Elements used in an OS Command) classification (NVD).

If successfully exploited, this vulnerability allows a low-privileged authenticated attacker to delete arbitrary files via the CLI. The potential impact includes the execution of unauthorized code or commands on the affected systems (Fortinet Advisory).

Fortinet has released patches for all affected versions. Users are advised to upgrade to the following versions: FortiManager 7.4.1 or above for 7.4.x, FortiManager 7.2.4 or above for 7.2.x, FortiManager 7.0.9 or above for 7.0.x, FortiManager 6.4.13 or above for 6.4.x, and FortiManager 6.2.12 or above for 6.2.x (Fortinet Advisory).