Lucene search

K
fortinetFortiGuard LabsFG-IR-22-133
HistoryFeb 16, 2023 - 12:00 a.m.

FortiWeb - Multiple OS command injection

2023-02-1600:00:00
FortiGuard Labs
www.fortiguard.com
11
fortiweb
os command injection
cwe-78
authenticated attacker
http requests

0.001 Low

EPSS

Percentile

46.3%

Multiple improper neutralization of special elements used in an OS Command (‘OS Command Injection’) vulnerabilities [CWE-78] in FortiWeb may allow an authenticated attacker to execute unauthorized code or commands via crafted parameters of HTTP requests.

0.001 Low

EPSS

Percentile

46.3%

Related for FG-IR-22-133