An improper privilege management vulnerability [CWE-269] in Fortinet FortiSOAR before 7.2.1 allows a GUI user who has already found a way to modify system files (via another, unrelated and hypothetical exploit) to execute arbitrary Python commands as root.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/psirt/FG-IR-22-152 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2022-09-06T15:10:29
Updated: 2024-08-03T06:48:36.040Z
Reserved: 2022-05-06T00:00:00
Link: CVE-2022-30298
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-09-06T18:15:15.393
Modified: 2022-09-09T02:41:55.880
Link: CVE-2022-30298
Redhat
No data.