6 matches found
CVE-2022-35845
Multiple improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in FortiTester 7.1.0, 7.0 all versions, 4.0.0 through 4.2.0, 2.3.0 through 3.9.1 may allow an authenticated attacker to execute arbitrary commands in the underlying shell...
Fortinet and Zoho Urge Customers to Patch Enterprise Software Vulnerabilities
Fortinet has warned of a high-severity flaw affecting multiple versions of FortiADC application delivery controller that could lead to the execution of arbitrary code. "An improper neutralization of special elements used in an OS command vulnerability in FortiADC may allow an authenticated attack...
CVE-2022-35845
creationtimestamp| type| source ---|---|--- 2023-01-03 20:17:21+00:00| seen| https://t.me/cibsecurity/55813 2023-04-11 17:32:36+00:00| seen| https://t.me/icscert/738...
CVE-2022-35845
Multiple improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in FortiTester 7.1.0, 7.0 all versions, 4.0.0 through 4.2.0, 2.3.0 through 3.9.1 may allow an authenticated attacker to execute arbitrary commands in the underlying shell...
CVE-2022-35845
Multiple improper neutralization of special elements used in an OS Command 'OS Command Injection' vulnerabilities CWE-78 in FortiTester 7.1.0, 7.0 all versions, 4.0.0 through 4.2.0, 2.3.0 through 3.9.1 may allow an authenticated attacker to execute arbitrary commands in the underlying shell...
CVE-2022-35845
FortiTester is affected by CVE-2022-35845, an OS Command Injection vulnerability due to improper neutralization of special elements in use. The issue allows an authenticated attacker to execute arbitrary commands in the underlying shell. Affected FortiTester versions include 2.3.0–3.9.1, 4.0.0–4....