CVE-2024-48890

An improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability CWE-78 in FortiSOAR IMAP connector version 3.5.7 and below may allow an authenticated attacker to execute unauthorized code or commands via a specifically crafted playbook...

CVE-2024-48890

An improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability CWE-78 in FortiSOAR IMAP connector version 3.5.7 and below may allow an authenticated attacker to execute unauthorized code or commands via a specifically crafted playbook...

CVE-2024-48890

An improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability CWE-78 in FortiSOAR IMAP connector version 3.5.7 and below may allow an authenticated attacker to execute unauthorized code or commands via a specifically crafted playbook...

CVE-2024-48890

FortiSOAR IMAP connector (versions ≤ 3.5.7) is affected by an OS Command Injection (CWE-78) due to improper neutralization of special elements in commands. An authenticated attacker could execute unauthorized code or commands via a specially crafted playbook. Remediation: upgrade FortiSOAR IMAP c...

PT-2025-2818 · Fortinet · Fortisoar Imap Connector

Name of the Vulnerable Software and Affected Versions: FortiSOAR IMAP connector versions 3.5.7 and below Description: The issue is related to an improper neutralization of special elements used in an OS command, which may allow an authenticated attacker to execute unauthorized code or commands vi...