9 matches found
CVE-2021-22128
An improper access control vulnerability in FortiProxy SSL VPN portal 2.0.0, 1.2.9 and below versions may allow an authenticated, remote attacker to access internal service such as the ZebOS Shell on the FortiProxy appliance through the Quick Connection functionality...
CVE-2021-22128
An improper access control vulnerability in FortiProxy SSL VPN portal 2.0.0, 1.2.9 and below versions may allow an authenticated, remote attacker to access internal service such as the ZebOS Shell on the FortiProxy appliance through the Quick Connection functionality...
CVE-2021-22128
An improper access control vulnerability in FortiProxy SSL VPN portal 2.0.0, 1.2.9 and below versions may allow an authenticated, remote attacker to access internal service such as the ZebOS Shell on the FortiProxy appliance through the Quick Connection functionality...
CVE-2021-22128
An improper access control vulnerability in FortiProxy SSL VPN portal 2.0.0, 1.2.9 and below versions may allow an authenticated, remote attacker to access internal service such as the ZebOS Shell on the FortiProxy appliance through the Quick Connection functionality...
CVE-2021-22128
The CVE-2021-22128 entry applies to FortiProxy SSL VPN portal, affecting versions 2.0.0 and 1.2.9 and below. The flaw is described as an improper access control that could let an authenticated, remote attacker access internal services, such as the ZebOS Shell, via the Quick Connection functionali...
CVE-2015-7361
FortiOS 5.2.3, when configured to use High Availability HA and the dedicated management interface is enabled, does not require authentication for access to the ZebOS shell on the HA dedicated management interface, which allows remote attackers to obtain shell access via unspecified vectors...
CVE-2015-7361
FortiOS 5.2.3, when configured to use High Availability HA and the dedicated management interface is enabled, does not require authentication for access to the ZebOS shell on the HA dedicated management interface, which allows remote attackers to obtain shell access via unspecified vectors...
CVE-2015-7361
FortiGate FortiOS 5.2.3 (HA with dedicated management interface) exposes the ZebOS shell without authentication, allowing remote shell access via the HA management interface. Affected component is the ZebOS routing shell on the dedicated management interface; root cause is lack of authentication ...
Fortinet FortiOS 5.2.3 ZebOS Shell Remote Command Execution (FG-IR-15-020)
The remote host is running Fortinet FortiOS 5.2.3. It is, therefore, affected by a remote command execution vulnerability that allows an unauthenticated, remote attacker to execute arbitrary commands via the internal ZebOS shell on the high availability HA dedicated management interface. C Tenabl...