How to fix EUVD-2023-32785?

During next maintenance window: Apply vendor patches when convenient. Monitor vendor channels for updates.

Is Fortinet affected by EUVD-2023-32785?

CVE-2023-29184 is a low-severity vulnerability in FortiOS 7.2 all (CVSS 3.2). The limited severity suggests constrained impact, typically requiring specific conditions or local access for exploitation. Apply vendor updates when available as part of routine maintenance.

EUVD-2023-32785

| CVE-2023-29184 LOW

2025-06-10 [email protected]

3.2

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

Low

Availability

None

Lifecycle Timeline

EUVD ID Assigned

Mar 14, 2026 - 19:49 euvd

EUVD-2023-32785

Analysis Generated

Mar 14, 2026 - 19:49 vuln.today

CVE Published

Jun 10, 2025 - 17:17 nvd

LOW 3.2

Description

An incomplete cleanup vulnerability [CWE-459] in FortiOS 7.2 all versions and before & FortiProxy version 7.2.0 through 7.2.2 and before 7.0.8 allows a VDOM privileged attacker to add SSH key files on the system silently via crafted CLI requests.

Analysis

Technical Context

This vulnerability is classified as Incomplete Cleanup (CWE-459).

Affected Products

Affected products: Fortinet Fortiproxy, Fortinet Fortios

Remediation

Monitor vendor advisories for patches. Apply mitigations such as network segmentation, access restrictions, and monitoring.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +16

POC: 0

EUVD-2023-32785 vulnerability details – vuln.today

Back

EUVD-2023-32785

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

EUVD-2023-32785

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code