CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/14 6:30 p.m.•2 views

EUVD-2024-55035

An Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability CWE-78 in FortiSOAR 7.6.0 through 7.6.1, 7.5.0 through 7.5.1, 7.4 all versions, 7.3 all versions may allow an attacker who has already obtained a non-login low privileged shell access via...

7CVSS6.5AI score0.00023EPSS

Exploits0References2

NVD•added 2025/10/14 4:15 p.m.•3 views

CVE-2024-48891

7CVSS0.00023EPSS

Exploits0References1

OSV•added 2025/10/14 4:15 p.m.•1 views

CVE-2024-48891

7CVSS5.8AI score

Exploits0References1

Vulnrichment•added 2025/10/14 3:22 p.m.•2 views

CVE-2024-48891

7CVSS6.6AI score0.00023EPSS

Exploits0References1

Cvelist•added 2025/10/14 3:22 p.m.•4 views

CVE-2024-48891

7CVSS0.00023EPSS

Exploits0References1

CVE•added 2025/10/14 3:22 p.m.•7 views

CVE-2024-48891

FortiSOAR is affected by an OS Command Injection (CWE-78) due to improper neutralization of special elements. Validated affected versions include 7.6.0–7.6.1, 7.5.0–7.5.1, all 7.4, and all 7.3. The vulnerability could allow an attacker who already has non-login, low-privileged shell access to esc...

7CVSS6.6AI score0.00023EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/10/14 12:0 a.m.•3 views

PT-2025-41944

Name of the Vulnerable Software and Affected Versions FortiSOAR versions 7.3.x FortiSOAR versions 7.4.x FortiSOAR versions 7.5.0 through 7.5.1 FortiSOAR versions 7.6.0 through 7.6.1 Description An Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' issue CWE-7...

7CVSS6.6AI score0.00023EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by