An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSandbox version 4.4.0 through 4.4.2 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.5 and 3.2.0 through 3.2.4 and 3.0.5 through 3.0.7 may allows attacker to execute unauthorized code or commands via CLI.
References
Link | Resource |
---|---|
https://fortiguard.com/psirt/FG-IR-23-411 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: fortinet
Published: 2024-04-09T14:24:23.806Z
Updated: 2024-06-18T19:52:07.124Z
Reserved: 2023-11-06T10:35:25.828Z
Link: CVE-2023-47540
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-04-09T15:15:27.833
Modified: 2024-04-10T13:24:22.187
Link: CVE-2023-47540
JSON object: View
Redhat Information
No data.
CWE