A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiWLM version 8.6.2 and below, version 8.5.2 and below, version 8.4.2 and below, version 8.3.2 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to the AP monitor handlers.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-21-189 |
![]() ![]() |
History
Fri, 25 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: fortinet
Published:
Updated: 2024-10-25T13:34:46.320Z
Reserved: 2021-10-28T00:00:00
Link: CVE-2021-43077

Updated: 2024-08-04T03:47:13.236Z

Status : Modified
Published: 2022-03-01T19:15:08.530
Modified: 2024-11-21T06:28:39.100
Link: CVE-2021-43077

No data.