EUVD-2022-40958

Malicious code in bioql PyPI...

Command injection

A hidden functionality vulnerability CWE-1242 in FortiTester CLI 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow a local, privileged user to obtain a root shell on the device via an undocumented command...

FortiTester 安全漏洞

FortiTester is a Fortinet professional-based network traffic testing tool from FortiTester, Inc. A security vulnerability exists in FortiTester CLI versions 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, and 7.0.0 through 7.1.0. An attacker could exploit the vulnerability to obtain sensitive informati...

CVE-2022-38372

A hidden functionality vulnerability CWE-1242 in FortiTester CLI 2.3.0 through 3.9.1, 4.0.0 through 4.2.0, 7.0.0 through 7.1.0 may allow a local, privileged user to obtain a root shell on the device via an undocumented command...

PT-2022-24395 · Fortinet · Fortitester Cli

Name of the Vulnerable Software and Affected Versions: FortiTester CLI versions 2.3.0 through 3.9.1 FortiTester CLI versions 4.0.0 through 4.2.0 FortiTester CLI versions 7.0.0 through 7.1.0 Description: A hidden functionality issue may allow a local, privileged user to obtain a root shell on the...