CVE-2023-27999
published 2023-05-03CVE-2023-27999: An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC 7.2.0, 7.1.0 through 7.1.1 may allow an authenticated…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
An improper neutralization of special elements used in an OS command vulnerability [CWE-78] in FortiADC 7.2.0, 7.1.0 through 7.1.1 may allow an authenticated attacker to execute unauthorized commands via specifically crafted arguments to existing commands.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | — | — |
| fortinet | fortiadc | >= 7.1.0 < 7.1.2 | 7.1.2 |
| fortinet | fortiadc | 7.1.0 – 7.1.1 | — |