A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiIsolator version 1.0.0, FortiIsolator version 1.1.0, FortiIsolator version 1.2.0 up to and including 1.2.2, FortiIsolator version 2.0.0 up to and including 2.0.1, FortiIsolator version 2.1.0 up to and including 2.1.2, FortiIsolator version 2.2.0, FortiIsolator version 2.3.0 up to and including 2.3.4 allows malicious user to execute arbitrary OS commands in the underlying shell via specially crafted input parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiisolator 2.1.0 |
||
fortinet fortiisolator 2.1.1 |
||
fortinet fortiisolator 2.1.2 |
||
fortinet fortiisolator 2.2.0 |
||
fortinet fortiisolator |
||
fortinet fortiisolator 2.0.0 |
||
fortinet fortiisolator 2.0.1 |
||
fortinet fortiisolator 1.0.0 |
||
fortinet fortiisolator 1.2.0 |
||
fortinet fortiisolator 1.2.1 |
||
fortinet fortiisolator 1.2.2 |
||
fortinet fortiisolator 1.1.0 |