CVE-2023-47540

An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSandbox version 4.4.0 through 4.4.2 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.5 and 3.2.0 through 3.2.4 and 3.0.5 through 3.0.7 may allows attacker to execute unauthorized code or commands via CLI.
Configurations

No configuration.

History

21 Nov 2024, 08:30

Type Values Removed Values Added
Summary
  • (es) Una neutralización inadecuada de elementos especiales utilizados en un comando del sistema operativo ('inyección de comando del sistema operativo') en Fortinet FortiSandbox versión 4.4.0 a 4.4.2 y 4.2.0 a 4.2.6 y 4.0.0 a 4.0.5 y 3.2.0 a través 3.2.4 y 3.0.5 a 3.0.7 pueden permitir a un atacante ejecutar código o comandos no autorizados a través de CLI.
References () https://fortiguard.com/psirt/FG-IR-23-411 - () https://fortiguard.com/psirt/FG-IR-23-411 -

09 Apr 2024, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-04-09 15:15

Updated : 2024-11-21 08:30


NVD link : CVE-2023-47540

Mitre link : CVE-2023-47540

CVE.ORG link : CVE-2023-47540


JSON object : View

Products Affected

No product.

CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')