CVE-2024-52960

4.3MEDIUM

A client-side enforcement of server-side security vulnerability [CWE-602] in Fortinet FortiSandbox version 5.0.0, 4.4.0 through 4.4.6 and before 4.2.7 allows an authenticated attacker with at least re

公開日: 3/11/2025更新日: 7/24/2025
NVDで表示MITREで表示

説明

A client-side enforcement of server-side security vulnerability [CWE-602] in Fortinet FortiSandbox version 5.0.0, 4.4.0 through 4.4.6 and before 4.2.7 allows an authenticated attacker with at least read-only permission to execute unauthorized commands via crafted requests.

AI分析AIによる分析

影響を受ける製品

fortinetfortisandbox
fortinetfortisandbox
fortinetfortisandbox
5.0.0

参照