Multiple improper neutralization of special elements used in an OS Command ('OS Command Injection') vulnerabilities [CWE-78] in FortiTester 7.1.0, 7.0 all versions, 4.0.0 up to and including 4.2.0, 2.3.0 up to and including 3.9.1 may allow an authenticated malicious user to execute arbitrary commands in the underlying shell.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortitester |
||
fortinet fortitester 7.0.0 |
||
fortinet fortitester 7.1.0 |
||
fortinet fortitester 4.0.0 |
||
fortinet fortitester 4.1.0 |
||
fortinet fortitester 4.1.1 |
||
fortinet fortitester 4.2.0 |