4 matches found
CVE-2023-36642
An improper neutralization of special elements used in an OS command vulnerability CWE-78 in the management interface of FortiTester 3.0.0 through 7.2.3 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to existing commands...
CVE-2023-36642
creationtimestamp| type| source ---|---|--- 2023-09-13 16:23:53+00:00| seen| https://t.me/cibsecurity/70385...
CVE-2023-36642
An improper neutralization of special elements used in an OS command vulnerability CWE-78 in the management interface of FortiTester 3.0.0 through 7.2.3 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to existing commands...
CVE-2023-36642
CVE-2023-36642 affects FortiTester management interface, with versions 3.0.0–7.2.3 vulnerable to an OS command injection due to improper neutralization of special elements (CWE-78). An authenticated attacker can execute unauthorized commands by crafting arguments to existing commands. The issue i...