368 matches found
CVE-2024-46663
A stack-buffer overflow vulnerability CWE-121 in Fortinet FortiMail CLI version 7.6.0 through 7.6.1 and before 7.4.3 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI commands...
CVE-2024-46663
CVE-2024-46663: A stack-buffer overflow (CWE-121) affects Fortinet FortiMail CLI, versions 7.6.0–7.6.1 and prior to 7.4.3. The flaw allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI input. Context in sources indicates Fortinet/FortiGuard PSIRT referen...
CVE-2024-45328
An incorrect authorization vulnerability CWE-863 in FortiSandbox 4.4.0 through 4.4.6 may allow a low priviledged administrator to execute elevated CLI commands via the GUI console menu...
Fortinet FortiSandbox 安全漏洞
Fortinet FortiSandbox is an APT Advanced Persistent Threat protection appliance from Fortinet. The appliance offers dual sandboxing technology, dynamic threat intelligence system, real-time control panel and reporting. A security vulnerability exists in Fortinet FortiSandbox versions 4.4.0 to...
CVE-2025-20118
A vulnerability in the implementation of the internal system processes of Cisco APIC could allow an authenticated, local attacker to access sensitive information on an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is du...
CVE-2025-20118
A vulnerability in the implementation of the internal system processes of Cisco APIC could allow an authenticated, local attacker to access sensitive information on an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is du...
CVE-2025-20117 Cisco Application Policy Infrastructure Controller Authenticated Command Injection Vulnerability
A vulnerability in the CLI of Cisco APIC could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due t...
CVE-2025-20117 Cisco Application Policy Infrastructure Controller Authenticated Command Injection Vulnerability
A vulnerability in the CLI of Cisco APIC could allow an authenticated, local attacker to execute arbitrary commands as root on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due t...
CVE-2025-20117
CVE-2025-20117 affects Cisco APIC CLI. An authenticated, local attacker can execute arbitrary commands as root on the device OS due to insufficient validation of CLI command arguments; success requires valid administrative credentials. The vulnerability stems from improper input validation when p...
PT-2025-8733 · Cisco · Cisco Apic
Name of the Vulnerable Software and Affected Versions: Cisco APIC affected versions not specified Description: A vulnerability in the implementation of internal system processes could allow an authenticated, local attacker to access sensitive information on an affected device. The attacker must...
[SECURITY] Fedora 40 Update: rust-tealdeer-1.7.1-3.fc40
Fetch and show tldr help pages for many CLI commands. Full featured offline client with caching support...
Fortinet Fortigate - Format string vulnerability in CLI commands (FG-IR-23-261)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-261 advisory. - A use of externally-controlled format string vulnerability CWE-134 in Fortinet FortiOS version 7.4.0 through 7.4.1 and befo...
[SECURITY] Fedora 41 Update: rust-tealdeer-1.7.1-3.fc41
Fetch and show tldr help pages for many CLI commands. Full featured offline client with caching support...
CVE-2021-44171
A improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiOS version 6.0.0 through 6.0.14, FortiOS version 6.2.0 through 6.2.10, FortiOS version 6.4.0 through 6.4.8, FortiOS version 7.0.0 through 7.0.3 allows attacker to execute privileged command...
[SECURITY] Fedora 41 Update: podman-5.3.2-1.fc41
podman Pod Manager is a fully featured container engine that is a simple daemonless tool. podman provides a Docker-CLI comparable command line that eases the transition from other container engines and allows the management of pods, containers and images. Simply put: alias docker=3Dpodman. Most...
CVE-2024-21758
A stack-based buffer overflow in Fortinet FortiWeb versions 7.2.0 through 7.2.7, and 7.4.0 through 7.4.1 may allow a privileged user to execute arbitrary code via specially crafted CLI commands, provided the user is able to evade FortiWeb stack protections...
CVE-2024-21758
A stack-based buffer overflow in Fortinet FortiWeb versions 7.2.0 through 7.2.7, and 7.4.0 through 7.4.1 may allow a privileged user to execute arbitrary code via specially crafted CLI commands, provided the user is able to evade FortiWeb stack protections...
CVE-2024-21758
A stack-based buffer overflow in Fortinet FortiWeb versions 7.2.0 through 7.2.7, and 7.4.0 through 7.4.1 may allow a privileged user to execute arbitrary code via specially crafted CLI commands, provided the user is able to evade FortiWeb stack protections...
CVE-2024-21758
The CVE-2024-21758 entry concerns a stack-based buffer overflow in Fortinet FortiWeb CLI handling that affects FortiWeb versions 7.2.0–7.2.7 and 7.4.0–7.4.1. The vulnerability could allow a privileged user to execute arbitrary code if FortiWeb stack protections are bypassed. No exploitation detai...
Fortinet FortiWeb - Stack overflow in execute backup command (FG-IR-23-458)
The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-458 advisory. - A stack-based buffer overflow in Fortinet FortiWeb versions 7.2.0 through 7.2.7, and 7.4.0 through 7.4.1 may allow a...