CVE-2024-33508

7.3HIGH

An improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in Fortinet FortiClientEMS 7.2.0 through 7.2.4, 7.0.0 through 7.0.12 may allow an unauthen

게시됨: 9/10/2024업데이트됨: 9/20/2024
NVD에서 보기MITRE에서 보기

설명

An improper neutralization of special elements used in a command ('Command Injection') vulnerability [CWE-77] in Fortinet FortiClientEMS 7.2.0 through 7.2.4, 7.0.0 through 7.0.12 may allow an unauthenticated attacker to execute limited and temporary operations on the underlying database via crafted requests.

AI 분석AI 기반

영향받는 제품

fortinetforticlient_enterprise_management_server
fortinetforticlient_enterprise_management_server

참조