Lucene search
China National Vulnerability DatabaseCNVD-2021-73658HistoryAug 05, 2021 - 12:00 a.m.
Fortinet FortiPortal File Upload Vulnerability
2021-08-0500:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
fortinet fortiportal
file upload
vulnerability
insufficient validation
malicious files
system tampering
security analysis
EPSS
0.001
Percentile
35.0%
Fortinet FortiPortal is a hosted security analysis and management support tool for Fortinetβs FortiGate, FortiWiFi and FortiAP product lines, available as a virtual machine for MSPs.Fortinet FortiPortal is vulnerable in versions 6.0.0 to 6.0.4, 5.3 .0 through 5.3.5, 5.2.0 through 5.2.5, and 4.2.2 and earlier versions contain a file upload vulnerability that is caused by insufficient validation of files when uploading them. An attacker could exploit the vulnerability to upload malicious files to the system and tamper with the underlying systemβs files.
Related
fortinet
fortinet
FortiPortal - Unrestricted file upload vulnerability
2021-08-03 00:00:00
cve
cve
CVE-2021-32594
2021-08-04 14:15:08
prion
prion
Unrestricted file upload
2021-08-04 14:15:00
nvd
nvd
CVE-2021-32594
2021-08-04 14:15:08
cvelist
cvelist
CVE-2021-32594
2021-08-04 13:26:46