A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specifically crafted http get request parameters.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HFortinet Fortiwlm
APPFortinet8.5.0 – 8.5.48.6.0 – 8.6.5
Related vulnerabilities
Path Traversal w Fortinet FortiWLM umożliwiający zdalne wykonanie kodu
A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiWLM ve...
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet Forti...
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet Forti...
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet Forti...