Critical Infrastructure Sectors: Energy
A relative path traversal vulnerability [CWE-23] in Fortinet FortiOS version 7.2.0 up to and including 7.2.2, 7.0.0 up to and including 7.0.8 and prior to 6.4.11, FortiProxy version 7.2.0 up to and including 7.2.2 and 7.0.0 up to and including 7.0.8 allows privileged VDOM administrators to escalate their privileges to super admin of the box via crafted CLI requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiproxy |
||
fortinet fortiproxy 7.2.0 |
||
fortinet fortios |
||
fortinet fortiproxy 7.2.1 |