A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSandbox version 4.4.0 through 4.4.3 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.4 allows attacker to execute unauthorized code or commands via crafted requests..
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-23-489 |
Configurations
No configuration.
History
09 Apr 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-09 15:15
Updated : 2024-04-10 13:24
NVD link : CVE-2024-21755
Mitre link : CVE-2024-21755
CVE.ORG link : CVE-2024-21755
JSON object : View
Products Affected
No product.
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')