Critical Infrastructure Sectors: Energy
A use of externally-controlled format string in Fortinet FortiProxy versions 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.10, FortiOS versions 7.4.0, 7.2.0 up to and including 7.2.4, 7.0.0 up to and including 7.0.11, 6.4.0 up to and including 6.4.12, 6.2.0 up to and including 6.2.15, 6.0.0 up to and including 6.0.17, FortiPAM versions 1.0.0 up to and including 1.0.3 allows malicious user to execute unauthorized code or commands via specially crafted API requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortios |
||
fortinet fortiproxy |
||
fortinet fortios 7.4.0 |
||
fortinet fortipam 1.1.0 |
||
fortinet fortipam |