CVE-2020-29015 — SQL Injection in Fortinet Fortiweb

CWE-89 — SQL Injection4 documents4 sources

Severity

9.8CRITICALNVD

EPSS

1.0%

top 22.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortiweb Fortinet Fortiweb

Timeline

PublishedJan 14

Latest updateMay 24

Description

A blind SQL injection in the user interface of FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauthenticated, remote attacker to execute arbitrary SQL queries or commands by sending a request with a crafted Authorization header containing a malicious SQL statement.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDfortinet/fortiweb6.3.0 — 6.3.7+1

▶CVEListV5fortinet/fortinet_fortiwebFortiWeb 6.3.0 through 6.3.7 and version before 6.2.4

🔴Vulnerability Details

GHSA

GHSA-rr5p-rpfr-2rwr: A blind SQL injection in the user interface of FortiWeb 6↗2022-05-24

▶

CVEList

CVE-2020-29015: A blind SQL injection in the user interface of FortiWeb 6↗2021-01-14

▶

📋Vendor Advisories

Fortinet

A blind SQL injection in the user interface of FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow an unauth...↗2021-01-14

▶