5 matches found
CVE-2024-23108
An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...
Critical Patches Released for New Flaws in Cisco, Fortinet, VMware Products
Cisco, Fortinet, and VMware have released security fixes for multiple security vulnerabilities, including critical weaknesses that could be exploited to perform arbitrary actions on affected devices. The first set from Cisco consists of three flaws – CVE-2024-20252 and CVE-2024-20254 CVSS score:...
CVE-2024-23108
An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...
CVE-2024-23108
CVE-2024-23108 relates to an OS command injection in Fortinet FortiSIEM. Multiple connected sources confirm an improper neutralization of special elements in FortiSIEM API handling, enabling an unauthenticated attacker to execute arbitrary commands remotely. Affected FortiSIEM versions span 6.4.0...
CVE-2024-23108
An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...