3 matches found
CVE-2024-21755
A improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.3, FortiSandbox 4.2.1 through 4.2.6, FortiSandbox 4.0.0 through 4.0.4 allows attacker to execute unauthorized code or commands via crafted requests...
CVE-2024-21755
A improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.3, FortiSandbox 4.2.1 through 4.2.6, FortiSandbox 4.0.0 through 4.0.4 allows attacker to execute unauthorized code or commands via crafted requests...
CVE-2024-21755
Fortinet FortiSandbox is affected by an os command injection vulnerability (CVE-2024-21755) in multiple releases: 4.0.0–4.0.4, 4.2.0–4.2.6, and 4.4.0–4.4.3. The issue stems from improper neutralization of special elements used in an os command, allowing an attacker to execute unauthorized code or...