cbcvebase.
CVE-2021-41018
published 2022-02-02

CVE-2021-41018: A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below…

PriorityP265high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
3.32%
87.1th percentile
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests.

Affected

5 ranges
VendorProductVersion rangeFixed in
fortinetfortinet
fortinetfortiweb
fortinetfortiweb>= 6.2.0 < 6.2.76.2.7
fortinetfortiweb>= 6.3.0 < 6.3.166.3.16
fortinetfortiweb>= 6.4.0 < 6.4.26.4.2

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is triggered via crafted HTTP requests to Fortinet FortiWeb; monitor for anomalous or malformed HTTP requests targeting FortiWeb management interfaces
  • OS command injection (CWE-78) in FortiWeb; inspect HTTP request parameters for shell metacharacters or command injection payloads directed at FortiWeb endpoints
  • ·Affected versions are FortiWeb 6.4.1 and below, and 6.3.15 and below; ensure patching targets both branches

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.