** UNSUPPORTED WHEN ASSIGNED **A improper limitation of a pathname to a restricted directory ('path traversal') vulnerability [CWE-22] in Fortinet FortiWAN version 5.2.0 through 5.2.1 and version 5.1.1. through 5.1.2 may allow an authenticated attacker to read and delete arbitrary file of the system via crafted HTTP or HTTPs requests.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-23-265 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2023-12-13T08:52:59.662Z
Updated: 2023-12-13T08:52:59.662Z
Reserved: 2023-09-27T12:26:48.750Z
Link: CVE-2023-44251
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-13T09:15:34.280
Modified: 2023-12-18T17:34:13.253
Link: CVE-2023-44251
JSON object: View
Redhat Information
No data.
CWE