Multiple improper neutralization of special elements used in an OS command vulnerabilities (CWE-78) in the Web GUI of FortiWAN prior to 4.5.9 may allow an authenticated malicious user to execute arbitrary commands on the underlying system's shell via specifically crafted HTTP requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiwan |