449 matches found
Sql injection
A improper neutralization of special elements used in an sql command 'sql injection' vulnerability CWE-89 in Fortinet FortiSandbox version 4.2.0, 4.0.0 through 4.0.2, 3.2.0 through 3.2.3, 3.1.x and 3.0.x allows a remote and authenticated attacker with read permission to retrieve arbitrary files...
CVE-2022-27485
A improper neutralization of special elements used in an sql command 'sql injection' vulnerability CWE-89 in Fortinet FortiSandbox version 4.2.0, 4.0.0 through 4.0.2, 3.2.0 through 3.2.3, 3.1.x and 3.0.x allows a remote and authenticated attacker with read permission to retrieve arbitrary files...
CVE-2022-27485
A improper neutralization of special elements used in an sql command 'sql injection' vulnerability CWE-89 in Fortinet FortiSandbox version 4.2.0, 4.0.0 through 4.0.2, 3.2.0 through 3.2.3, 3.1.x and 3.0.x allows a remote and authenticated attacker with read permission to retrieve arbitrary files...
CVE-2022-27485
Fortinet FortiSandbox contains an SQL Injection (CWE-89) flaw allowing a remote authenticated attacker with read permission to retrieve arbitrary files from the underlying Linux system via a crafted HTTP request. Affected versions include 3.0.x through 4.2.0 and 4.0.0–4.0.2, 3.2.0–3.2.3, 3.1.x. F...
FortiSandbox - SQL injection in certificate downloading feature
An improper neutralization of special elements used in an SQL Command 'SQL Injection' vulnerability CWE-89 in FortiSandbox may allow a remote and authenticated attacker with read permission to retrieve arbitrary files from the underlying Linux system via a crafted HTTP request...
CVE-2022-41328
A improper limitation of a pathname to a restricted directory vulnerability 'path traversal' CWE-22 in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands...
Path traversal
A improper limitation of a pathname to a restricted directory vulnerability 'path traversal' CWE-22 in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands...
CVE-2022-41328
A improper limitation of a pathname to a restricted directory vulnerability 'path traversal' CWE-22 in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands...
CVE-2022-41328
A improper limitation of a pathname to a restricted directory vulnerability 'path traversal' CWE-22 in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands...
CVE-2022-41328
A improper limitation of a pathname to a restricted directory vulnerability ‘path traversal’ CWE-22 in Fortinet FortiOS version 7.2.0 through 7.2.3, 7.0.0 through 7.0.9 and before 6.4.11 allows a privileged attacker to read and write files on the underlying Linux system via crafted CLI commands...
PT-2023-1654 · Fortinet · Fortios
Name of the Vulnerable Software and Affected Versions: Fortinet FortiOS versions 7.2.0 through 7.2.3 Fortinet FortiOS versions 7.0.0 through 7.0.9 Fortinet FortiOS versions before 6.4.11 Description: The issue is related to an improper limitation of a pathname to a restricted directory...
The vulnerabilities in the web interface of FortiOS, the local software product FortiSwitch Manager, and the proxy server FortiProxy, designed for protecting against internet attacks, allow attackers to read and write files on a basic Linux system.
The vulnerability in the web interface of FortiOS operating systems, the local software management platform FortiSwitch Manager, and the proxy server for internet attack protection, FortiProxy, is related to errors in processing the relative path to the directory. Exploiting this vulnerability...
Fortinet Fortigate Arbitrary read/write vulnerability in administrative interface (FG-IR-22-391)
The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-391 advisory. - A relative path traversal vulnerability CWE-23 in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and...
Finding forensics breadcrumbs in Android image storage
Introduction Our digital forensics work is wide and varied. Often there’s very little that we can talk about in the public domain, so when I find something that we can share I get a bit excited. In this post I’ll be talking about image scanning apps, and how to reverse engineer them to pinpoint...
CVE-2022-41335
A relative path traversal vulnerability CWE-23 in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before 6.4.10, FortiProxy version 7.2.0 through 7.2.1, 7.0.0 through 7.0.7 and before 2.0.10, FortiSwitchManager 7.2.0 and before 7.0.0 allows an authenticated attacker to read...
CVE-2022-41335
A relative path traversal vulnerability CWE-23 in Fortinet FortiOS version 7.2.0 through 7.2.2, 7.0.0 through 7.0.8 and before 6.4.10, FortiProxy version 7.2.0 through 7.2.1, 7.0.0 through 7.0.7 and before 2.0.10, FortiSwitchManager 7.2.0 and before 7.0.0 allows an authenticated attacker to read...
SUSE CVE-2006-1542
Stack-based buffer overflow in Python 2.4.2 and earlier, running on Linux 2.6.12.5 under gcc 4.0.3 with libc 2.3.5, allows local users to cause a "stack overflow," and possibly gain privileges, by running a script from a current working directory that has a long name, related to the realpath...
SUSE CVE-2016-0980
Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial o...
SUSE CVE-2016-5167
Multiple unspecified vulnerabilities in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux allow attackers to cause a denial of service or possibly have other impact via unknown vectors...
The vulnerability of the RADEON video driver (drivers/gpu/drm/radeon/radeon_display.c) in the Linux operating system, which allows a local attacker to trigger a service failure.
The vulnerability of the RADEON video driver drivers/gpu/drm/radeon/radeondisplay.c in the Linux operating system is related to the assignment of the zero pointer. Exploiting this vulnerability can allow a local attacker to cause a service failure...