An improper neutralization of special elements [CWE-89] used in an OS command vulnerability [CWE-78] in the command line interpreter of FortiAP 6.0.0 up to and including 6.4.7, 7.0.0 up to and including 7.0.3, 7.2.0, FortiAP-S 6.0.0 up to and including 6.4.7, FortiAP-W2 6.0.0 up to and including 6.4.7, 7.0.0 up to and including 7.0.3, 7.2.0 and FortiAP-U 5.4.0 up to and including 6.2.3 may allow an authenticated malicious user to execute unauthorized commands via specifically crafted arguments to existing commands.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiap-u |
||
fortinet fortiap-w2 7.2.0 |
||
fortinet fortiap-w2 |
||
fortinet fortiap-s |
||
fortinet fortiap 7.2.0 |
||
fortinet fortiap |