An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in the management interface of FortiTester 3.0.0 up to and including 7.2.3 may allow an authenticated malicious user to execute unauthorized commands via specifically crafted arguments to existing commands.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortitester |