A path traversal vulnerability [CWE-22] in FortiAP-U CLI 6.2.0 through 6.2.3, 6.0.0 through 6.0.4, 5.4.0 through 5.4.6 may allow an admin user to delete and access unauthorized files and data via specifically crafted CLI commands.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HFortinet Fortiap U
APPFortinet5.4.05.4.35.4.45.4.55.4.66.2.0 – 6.2.36.0.0 – 6.0.4
Powiązane podatności
An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command li...
An improper neutralization of special elements [CWE-89] used in an OS command vulnerability [CWE-78] in the co...
An improper neutralization of special elements used in an OS command ("OS Command Injection") vulnerability [C...
An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command li...
An improper input validation in FortiAP-S/W2 6.2.0 to 6.2.2, 6.0.5 and below, FortiAP-U 6.0.1 and below CLI ad...