MEDIUM🇬🇧 English

CVE-2019-15709

CVSS 6.5v3.1pub. 2020-06-01upd. 2024-11-21

An improper input validation in FortiAP-S/W2 6.2.0 to 6.2.2, 6.0.5 and below, FortiAP-U 6.0.1 and below CLI admin console may allow unauthorized administrators to overwrite system files via specially crafted tcpdump commands in the CLI.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
  • Fortinet Fortiap S

    OS
    Fortinet
    ≤ 6.0.56.2.0 – 6.2.2
  • Fortinet Fortiap U

    HW
    Fortinet
    ≤ 6.0.1
  • Fortinet Fortiap W2

    OS
    Fortinet
    ≤ 6.0.56.2.0 – 6.2.2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2023-36634HIGH7.1ten sam produkt

An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command li...

CVE-2022-29058HIGH7.8ten sam produkt

An improper neutralization of special elements [CWE-89] used in an OS command vulnerability [CWE-78] in the co...

CVE-2022-30301HIGH7.8ten sam produkt

A path traversal vulnerability [CWE-22] in FortiAP-U CLI 6.2.0 through 6.2.3, 6.0.0 through 6.0.4, 5.4.0 throu...

CVE-2021-26106HIGH7.8ten sam produkt

An improper neutralization of special elements used in an OS Command vulnerability in FortiAP's console 6.4.1 ...

CVE-2019-17657HIGH7.5ten sam produkt

An Uncontrolled Resource Consumption vulnerability in Fortinet FortiSwitch below 3.6.11, 6.0.6 and 6.2.2, Fort...

CVE-2019-15709 — MEDIUM 6.5 | CVEbaza.pl