EUVD-2020-21395

Malware in sbrugna...

CVE-2020-29013

An improper input validation vulnerability in the sniffer interface of FortiSandbox before 3.2.2 may allow an authenticated attacker to silently halt the sniffer via specifically crafted requests...

CVE-2020-29013

An improper input validation vulnerability in the sniffer interface of FortiSandbox before 3.2.2 may allow an authenticated attacker to silently halt the sniffer via specifically crafted requests...

Input validation

An improper input validation vulnerability in the sniffer interface of FortiSandbox before 3.2.2 may allow an authenticated attacker to silently halt the sniffer via specifically crafted requests...

CVE-2020-29013

An improper input validation vulnerability in the sniffer interface of FortiSandbox before 3.2.2 may allow an authenticated attacker to silently halt the sniffer via specifically crafted requests...

CVE-2020-29013

An improper input validation vulnerability in the sniffer interface of FortiSandbox before 3.2.2 may allow an authenticated attacker to silently halt the sniffer via specifically crafted requests...

CVE-2020-29013

Fortinet FortiSandbox (before 3.2.2) contains an improper input validation vulnerability in the sniffer interface. An authenticated attacker can silence the sniffer by sending crafted requests, potentially impacting availability (CVSS 3.1/5.4). If applicable, update to FortiSandbox 3.2.2 or later...

Insufficient validation logic in Fortisandbox sniffer's max file size

An improper input validation vulnerability in the sniffer interface of FortiSandbox may allow an authenticated attacker to silently halt the sniffer via specifically crafted requests...

Fortinet FortiSandbox 输入验证错误漏洞

Fortinet FortiSandbox is an APT Advanced Persistent Threat protection appliance from Fortinet. The appliance offers dual sandboxing technology, dynamic threat intelligence system, real-time control panel and reporting. An input validation error vulnerability exists in Fortinet FortiSandbox, which...