5 matches found
CVE-2023-27999
An improper neutralization of special elements used in an OS command vulnerability CWE-78 in FortiADC 7.2.0, 7.1.0 through 7.1.1 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to existing commands...
Vulnerabilities fixed in Fortinet products
Fortinet has fixed vulnerabilities in FortiOS, FortiProxy and FortiADC. The vulnerability with reference CVE-2023-22640 relates FortiOS and FortiProxy and allows an authenticated remote malicious person to execute arbitrary code via specially prepared requests to execute arbitrary code. The...
CVE-2023-27999
creationtimestamp| type| source ---|---|--- 2023-05-04 02:36:34+00:00| seen| https://t.me/cibsecurity/63269...
CVE-2023-27999
An improper neutralization of special elements used in an OS command vulnerability CWE-78 in FortiADC 7.2.0, 7.1.0 through 7.1.1 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to existing commands...
CVE-2023-27999
CVE-2023-27999 affects FortiADC 7.2.0 and 7.1.0–7.1.1. It is an OS command injection due to improper neutralization of special elements (CWE-78) in FortiADC’s command handling, allowing an authenticated attacker to execute arbitrary commands via specially crafted arguments to existing commands. A...