Lucene search
FortiGuard LabsFG-IR-22-070HistoryNov 01, 2022 - 12:00 a.m.
FortiTester - Command injection in CLI command
2022-11-0100:00:00
FortiGuard Labs
www.fortiguard.com
16
command injection
os command vulnerability
fortitester
0.0004 Low
EPSS
Percentile
13.1%
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in the command line interpreter of FortiTester may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to existing commands.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fortitester | eq | 7.1.0 | |
| fortitester | eq | 7.0.0 | |
| fortitester | eq | 4.2.0 | |
| fortitester | eq | 4.1.1 | |
| fortitester | eq | 4.1.0 | |
| fortitester | eq | 4.0.0 | |
| fortitester | eq | 3.9.1 | |
| fortitester | eq | 3.9.0 | |
| fortitester | eq | 3.8.0 | |
| fortitester | eq | 3.7.1 |
Related
cvelist
cvelist
CVE-2022-33870
2022-11-02 00:00:00
cve
cve
CVE-2022-33870
2022-11-02 12:15:53
nvd
nvd
CVE-2022-33870
2022-11-02 12:15:53
prion
prion
Command injection
2022-11-02 12:15:00