5 matches found
CVE-2024-56497
An improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiMail versions 7.2.0 through 7.2.4 and 7.0.0 through 7.0.6 and 6.4.0 through 6.4.7, FortiRecorder versions 7.0.0 and 6.4.0 through 6.4.4 allows attacker to execute unauthorized code or...
CVE-2024-56497
creationtimestamp| type| source ---|---|--- 2025-01-14 14:18:18+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgxrtpep2f 2025-01-14 15:39:34+00:00| seen| https://t.me/cvedetector/15253 2025-01-14 16:58:29+00:00| seen|...
CVE-2024-56497
An improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiMail versions 7.2.0 through 7.2.4 and 7.0.0 through 7.0.6 and 6.4.0 through 6.4.7, FortiRecorder versions 7.0.0 and 6.4.0 through 6.4.4 allows attacker to execute unauthorized code or...
CVE-2024-56497
Fortinet FortiMail and FortiRecorder are affected by an OS command injection due to improper neutralization of special elements in CLI handling. Affected: FortiMail 6.4.0–6.4.7, 7.0.0–7.0.6, 7.2.0–7.2.4; FortiRecorder 6.4.0–6.4.4 and 7.0.0. Root cause: insufficient sanitization allows execution o...
CVE-2024-56497
An improper neutralization of special elements used in an os command 'os command injection' in Fortinet FortiMail versions 7.2.0 through 7.2.4 and 7.0.0 through 7.0.6 and 6.4.0 through 6.4.7, FortiRecorder versions 7.0.0 and 6.4.0 through 6.4.4 allows attacker to execute unauthorized code or...