An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] in FortiAP-C console 5.4.0 through 5.4.3, 5.2.0 through 5.2.1 may allow an authenticated attacker to execute unauthorized commands by running CLI commands with specifically crafted arguments.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-21-227 |
History
Fri, 25 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2022-03-02T10:00:19
Updated: 2024-10-25T13:34:36.011Z
Reserved: 2022-01-03T00:00:00
Link: CVE-2022-22301
Vulnrichment
Updated: 2024-08-03T03:07:50.235Z
NVD
Status : Analyzed
Published: 2022-03-02T10:15:07.983
Modified: 2022-03-10T15:40:27.357
Link: CVE-2022-22301
Redhat
No data.