CVE-2021-22123 — OS Command Injection in Fortinet Fortiweb

CWE-78 — OS Command Injection6 documents5 sources

Severity

8.8HIGHNVD

CNA7.6

EPSS

80.5%

top 0.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortiweb Fortinet Fortiweb

Timeline

PublishedJun 1

Latest updateMay 24

Description

An OS command injection vulnerability in FortiWeb's management interface 6.3.7 and below, 6.2.3 and below, 6.1.x, 6.0.x, 5.9.x may allow a remote authenticated attacker to execute arbitrary commands on the system via the SAML server configuration page.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDfortinet/fortiweb5.9.0 — 6.2.4+1

▶CVEListV5fortinet/fortinet_fortiwebFortiWeb 6.3.7 and below, 6.2.3 and below, 6.1.x, 6.0.x, 5.9.x

🔴Vulnerability Details

GHSA

GHSA-r6qx-2c6r-vjjf: An OS command injection vulnerability in FortiWeb's management interface 6↗2022-05-24

▶

CVEList

CVE-2021-22123: An OS command injection vulnerability in FortiWeb's management interface 6↗2021-06-01

▶

🔍Detection Rules

Suricata

ET EXPLOIT Fortinet FortiWeb OS Command Injection Inbound M1 (CVE-2021-22123)↗2021-08-18

▶

Suricata

ET EXPLOIT Fortinet FortiWeb OS Command Injection Inbound M2 (CVE-2021-22123)↗2021-08-18

▶

📋Vendor Advisories

Fortinet

An OS command injection vulnerability in FortiWeb's management interface 6.3.7 and below, 6.2.3 and below, 6.1.x, 6.0.x,...↗2021-06-01

▶