A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSandbox version 4.4.0 through 4.4.3 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.4 allows attacker to execute unauthorized code or commands via crafted requests..
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-23-489 |
Configurations
No configuration.
History
09 Apr 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-09 15:15
Updated : 2024-04-10 13:24
NVD link : CVE-2024-21756
Mitre link : CVE-2024-21756
CVE.ORG link : CVE-2024-21756
JSON object : View
Products Affected
No product.
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')