Description
A vulnerability has been found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. The impacted element is an unknown function of the file /fort/audit/get_clip_img of the component HTTP POST Request Handler. Such manipulation of the argument frame/dirno leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Published: 2026-01-26
Score: 6.9 Medium
EPSS: 3.6% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A vulnerability in Sangfor Operation and Maintenance Security Management System allows an attacker to inject arbitrary commands by manipulating the frame/dirno argument in the /fort/audit/get_clip_img HTTP POST handler. This injection can be performed remotely, giving the attacker the ability to execute commands on the underlying system, potentially compromising confidentiality, integrity, and availability of the affected environment.

Affected Systems

The affected product is Sangfor Operation and Maintenance Security Management System, with all releases up to version 3.0.12 vulnerable. No other versions are listed as impacted.

Risk and Exploitability

The CVSS score of 6.9 indicates moderate severity, while the EPSS score of 4% suggests a low probability of exploitation in the short term, though the vulnerability is publicly disclosed and may be used. It is not currently listed in the CISA KEV catalog. The likely attack vector is a remote HTTP POST to the /fort/audit/get_clip_img endpoint, requiring the ability to send crafted frame/dirno parameters.

Generated by OpenCVE AI on June 18, 2026 at 05:35 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the Sangfor Operation and Maintenance Security Management System to the latest version that fixes the command injection vulnerability, ensuring the affected endpoint is removed or secured.
  • If an immediate upgrade is not feasible, block external access to the /fort/audit/get_clip_img endpoint using firewall or web‑application firewall rules until the patch is applied.
  • Validate and sanitize the frame/dirno input on the server side so that only expected numeric values are accepted, and perform internal security testing to confirm the injection path is closed.

Generated by OpenCVE AI on June 18, 2026 at 05:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 30 Jan 2026 16:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:sangfor:operation_and_maintenance_security_management_system:*:*:*:*:*:*:*:*

Mon, 26 Jan 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 26 Jan 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Sangfor
Sangfor operation And Maintenance Security Management System
Vendors & Products Sangfor
Sangfor operation And Maintenance Security Management System

Mon, 26 Jan 2026 01:15:00 +0000

Type Values Removed Values Added
Description A vulnerability has been found in Sangfor Operation and Maintenance Security Management System up to 3.0.12. The impacted element is an unknown function of the file /fort/audit/get_clip_img of the component HTTP POST Request Handler. Such manipulation of the argument frame/dirno leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Title Sangfor Operation and Maintenance Security Management System HTTP POST Request get_clip_img command injection
Weaknesses CWE-74
CWE-77
References
Metrics cvssV2_0

{'score': 7.5, 'vector': 'AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 7.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Sangfor Operation And Maintenance Security Management System
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-02-23T08:55:04.938Z

Reserved: 2026-01-25T09:50:36.992Z

Link: CVE-2026-1412

cve-icon Vulnrichment

Updated: 2026-01-26T17:28:17.420Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-26T01:15:49.570

Modified: 2026-06-17T10:15:44.050

Link: CVE-2026-1412

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-18T05:45:02Z

Weaknesses
  • CWE-74

    Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

  • CWE-77

    Improper Neutralization of Special Elements used in a Command ('Command Injection')