3 matches found
CVE-2022-33875
An improper neutralization of special elements used in an SQL Command 'SQL Injection' vulnerability in Fortinet FortiADC version 7.1.0, version 7.0.0 through 7.0.2 and version 6.2.4 and below allows an authenticated attacker to execute unauthorized code or commands via specifically crafted HTTP...
CVE-2022-33875
An improper neutralization of special elements used in an SQL Command 'SQL Injection' vulnerability in Fortinet FortiADC version 7.1.0, version 7.0.0 through 7.0.2 and version 6.2.4 and below allows an authenticated attacker to execute unauthorized code or commands via specifically crafted HTTP...
CVE-2022-33875
CVE-2022-33875 affects Fortinet FortiADC: SQL Injection caused by improper neutralization in FortiADC’s handling of HTTP requests. Affected are FortiADC 7.1.0; 7.0.0–7.0.2; 6.2.4 and earlier. Root cause is improper sanitization of SQL elements; authenticated attackers can execute unauthorized com...