A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiSandbox version 4.4.0 and 4.2.0 up to and including 4.2.5 and 4.0.0 up to and including 4.0.3 and 3.2.0 up to and including 3.2.4 and 2.5.0 up to and including 2.5.2 and 2.4.1 and 2.4.0 allows malicious user to denial of service via crafted http requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortisandbox |
||
fortinet fortisandbox 4.4.0 |