cbcvebase.
CVE-2022-22301
published 2022-03-02

CVE-2022-22301: An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] in FortiAP-C console 5.4.0 through 5.4.3, 5.2.0 through 5.2.1 may…

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] in FortiAP-C console 5.4.0 through 5.4.3, 5.2.0 through 5.2.1 may allow an authenticated attacker to execute unauthorized commands by running CLI commands with specifically crafted arguments.

Affected

9 ranges
VendorProductVersion rangeFixed in
fortinetfortiap
fortinetfortiap-c
fortinetfortiap-c
fortinetfortiap-c
fortinetfortiap-c
fortinetfortiap-c
fortinetfortiap-c
fortinetfortiap-c
fortinetfortinet_fortiap-c