Multiple command injection vulnerabilities in the command line interpreter of FortiWeb versions 6.4.1, 6.4.0, 6.3.0 through 6.3.15, 6.2.0 through 6.2.6, and 6.1.0 through 6.1.2 may allow an authenticated attacker to execute arbitrary commands on the underlying system shell via specially crafted command arguments.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-21-157 |
History
Fri, 25 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2021-12-08T18:14:55
Updated: 2024-10-25T13:38:48.813Z
Reserved: 2021-07-06T00:00:00
Link: CVE-2021-36195
Vulnrichment
Updated: 2024-08-04T00:54:50.113Z
NVD
Status : Modified
Published: 2021-12-08T19:15:09.837
Modified: 2024-11-21T06:13:17.890
Link: CVE-2021-36195
Redhat
No data.