A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.2 and below, version 8.5.2 and below, version 8.4.2 and below, version 8.3.2 and below allows malicious user to execute unauthorized code or commands via crafted HTTP requests to the alarm dashboard and controller config handlers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiwlm |