Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:39 a.m.11 views

CVE-2024-23108

An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...

10CVSS9.4AI score0.78375EPSS
Exploits2References1
The Hacker News
The Hacker News
added 2024/02/08 5:10 a.m.102 views

Critical Patches Released for New Flaws in Cisco, Fortinet, VMware Products

Cisco, Fortinet, and VMware have released security fixes for multiple security vulnerabilities, including critical weaknesses that could be exploited to perform arbitrary actions on affected devices. The first set from Cisco consists of three flaws – CVE-2024-20252 and CVE-2024-20254 CVSS score:...

10CVSS9.6AI score0.78375EPSS
Exploits3
NVD
NVD
added 2024/02/05 2:15 p.m.26 views

CVE-2024-23108

An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...

10CVSS9.9AI score0.78375EPSS
Exploits2References2
CVE
CVE
added 2024/02/05 1:26 p.m.140 views

CVE-2024-23108

CVE-2024-23108 relates to an OS command injection in Fortinet FortiSIEM. Multiple connected sources confirm an improper neutralization of special elements in FortiSIEM API handling, enabling an unauthenticated attacker to execute arbitrary commands remotely. Affected FortiSIEM versions span 6.4.0...

10CVSS9.3AI score0.78375EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/05 1:26 p.m.26 views

CVE-2024-23108

An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...

10CVSS9.3AI score0.78375EPSS
Exploits2References1
Rows per page
Query Builder