CVE-2022-33873

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Console login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated attacker to execute arbitrary command in the...

CVE-2022-33873

creationtimestamp| type| source ---|---|--- 2022-10-10 10:25:16+00:00| seen| https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus16/2022 2022-10-18 18:14:25+00:00| seen| https://t.me/cibsecurity/51681...

CVE-2022-33873

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Console login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated attacker to execute arbitrary command in the...

CVE-2022-33873

CVE-2022-33873 describes an OS command injection in FortiTester Console login components due to improper neutralization of special elements. Affected FortiTester versions: 2.3.0–3.9.1, 4.0.0–4.2.0, and 7.0.0–7.1.0. Unauthenticated attackers could execute arbitrary commands in the underlying shell...

CVE-2022-33873

An improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in Console login components of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an unauthenticated attacker to execute arbitrary command in the...