Fortinet FortiWeb OS command injection in CLI (FG-IR-22-186)

The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-186 advisory. - A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiWeb version 7.0....

Vulnerabilities fixed in Fortinet FortiWeb and FortiADC

Fortinet has fixed vulnerabilities in FortiWeb and FortiADC. A malicious party can exploit the vulnerability with reference CVE-2022-43955 exploit to perform a cross-site scripting attack XSS on the web interface of the vulnerable systems. Such an attack can lead to execution of code within the...

CVE-2022-43948

creationtimestamp| type| source ---|---|--- 2023-04-11 20:23:26+00:00| seen| https://t.me/cibsecurity/61888...

CVE-2022-43948

Summary of CVE-2022-43948 details : An OS command injection vulnerability (improper neutralization of special elements used in an os command) affects Fortinet FortiWeb and FortiADC. Affected versions include FortiWeb 7.0.0–7.0.3 and FortiADC 7.0.0–7.0.3, 7.1.0–7.1.1, plus FortiADC 6.0–6.2 and 5.1...