CVE-2024-31491
8.8HIGHA client-side enforcement of server-side security vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.4, FortiSandbox 4.2.1 through 4.2.6 allows attacker to execute unauthorized code or commands
Publicado: 5/14/2024Actualizado: 1/14/2026
Descripción
A client-side enforcement of server-side security vulnerability in Fortinet FortiSandbox 4.4.0 through 4.4.4, FortiSandbox 4.2.1 through 4.2.6 allows attacker to execute unauthorized code or commands via HTTP requests.
Análisis IAImpulsado por IA
Productos Afectados
fortinetfortisandbox
fortinetfortisandbox
Referencias
- https://fortiguard.com/psirt/FG-IR-24-054Vendor Advisory
- https://fortiguard.com/psirt/FG-IR-24-054Vendor Advisory