CVE-2023-36547
published 2023-10-10CVE-2023-36547: A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through…
PriorityP270critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.11%
79.4th percentile
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specifically crafted http get request parameters.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fortinet | fortinet | — | — |
| fortinet | fortiwlm | — | — |
| fortinet | fortiwlm | 8.5.0 – 8.5.4 | — |
| fortinet | fortiwlm | 8.6.0 – 8.6.5 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is triggered via crafted HTTP GET request parameters containing OS command injection payloads targeting Fortinet FortiWLM ↗
- →Target affected versions: FortiWLM 8.6.0–8.6.5 and 8.5.0–8.5.4; monitor or block HTTP GET requests with shell metacharacters in parameters to these appliances ↗
- →CWE-78 (OS Command Injection) — inspect HTTP GET query string parameters for shell metacharacters (e.g., ;, |, &&, $(), backticks) destined for FortiWLM management interfaces ↗
- →CVSS 9.8 Critical with no authentication implied — treat any unauthenticated HTTP GET traffic to FortiWLM as high-priority for inspection ↗
- ·Multiple related CVEs share the same advisory (FG-IR-23-140); ensure detections cover the full CVE cluster and not just CVE-2023-36547 in isolation ↗
- ·Affected products span both 'FortiWLM' and 'FortiWlm' naming variants; ensure asset inventory and detection rules account for both naming conventions ↗
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Fortinet
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM versio...
vendor_fortinet·2023-10-10·CVSS 9.8
CVE-2023-34993 [CRITICAL] CWE-78 A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM versio...
FG-IR-23-140: A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM versio...
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specifically crafted http get request parameters.
CVEs: CVE-2023-34993, CVE-2023-36547, CVE-2023-36548, CVE-2023-36549, CVE-2023-36550
CWEs: CWE-78
CVSS: 9.8 (critical)
Affected products: FortiWLM, FortiWlm, Fortinet
GHSA
GHSA-jcw7-8qv8-78px: A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8
ghsa_unreviewed·2023-10-10
CVE-2023-36547 [CRITICAL] CWE-78 GHSA-jcw7-8qv8-78px: A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWLM version 8.6.0 through 8.6.5 and 8.5.0 through 8.5.4 allows attacker to execute unauthorized code or commands via specifically crafted http get request parameters.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-10-10
Published