CVE-2023-42782

Name of the Vulnerable Software and Affected Versions FortiAnalyzer versions 7.4.0 and below 7.2.3

Description The issue is related to insufficient verification of data authenticity, allowing a remote unauthenticated attacker to send messages to the syslog server of FortiAnalyzer via knowledge of an authorized device serial number.

Recommendations For FortiAnalyzer versions 7.4.0 and below 7.2.3, consider restricting access to the syslog server to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the device serial number to authenticate messages to the syslog server until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.