Multiple improper neutralization of special elements used in an os command ('OS Command Injection') vulnerabilties [CWE-78] in Fortinet FortiADCManager version 7.1.0 and prior to 7.0.0, FortiADC version 7.2.0 and prior to 7.1.2 allows a local authenticated malicious user to execute arbitrary shell code as `root` user via crafted CLI requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiadc |
||
fortinet fortiadc 7.1.0 |
||
fortinet fortiadc 7.2.0 |
||
fortinet fortiadc 7.1.1 |
||
fortinet fortiadc 7.1.2 |
||
fortinet fortiadc manager 7.1.0 |
||
fortinet fortiadc manager 7.0.0 |
||
fortinet fortiadc manager 6.2.1 |
||
fortinet fortiadc manager 6.2.0 |
||
fortinet fortiadc manager 5.2.0 |
||
fortinet fortiadc manager 5.2.1 |
||
fortinet fortiadc manager 5.3.0 |
||
fortinet fortiadc manager 5.4.0 |
||
fortinet fortiadc manager 6.0.0 |
||
fortinet fortiadc manager 6.1.0 |