3 matches found
CVE-2022-35844
An improper neutralization of special elements used in an OS command vulnerability CWE-78 in the management interface of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an authenticated attacker to execute unauthorized commands via specifically crafted argument...
CVE-2022-35844
CVE-2022-35844 is a command-injection vulnerability in FortiTester’s management interface. It affects FortiTester versions 2.3.0–3.9.1, 4.0.0–4.2.0, and 7.0.0–7.1.0, caused by improper neutralization of special elements in OS commands. An authenticated attacker can execute unauthorized commands v...
CVE-2022-35844
An improper neutralization of special elements used in an OS command vulnerability CWE-78 in the management interface of FortiTester 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow an authenticated attacker to execute unauthorized commands via specifically crafted argument...