Fortinet Fortiwlm vulnerabilities
23 known vulnerabilities affecting fortinet/fortiwlm.
Total CVEs
23
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL8HIGH11MEDIUM4
Vulnerabilities
Page 2 of 2
CVE-2021-36185HIGHCVSS 8.8≥ 8.2.2, ≤ 8.6.12021-11-02
CVE-2021-36185 [HIGH] CWE-78 CVE-2021-36185: A improper neutralization of special elements used in an OS command ('OS Command Injection') in Fort
A improper neutralization of special elements used in an OS command ('OS Command Injection') in Fortinet FortiWLM version 8.6.1 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests.
nvd
CVE-2021-36184MEDIUMCVSS 6.5≥ 8.2.2, ≤ 8.6.12021-11-02
CVE-2021-36184 [HIGH] CWE-89 CVE-2021-36184: A improper neutralization of Special Elements used in an SQL Command ('SQL Injection') in Fortinet F
A improper neutralization of Special Elements used in an SQL Command ('SQL Injection') in Fortinet FortiWLM version 8.6.1 and below allows attacker to disclosure device, users and database information via crafted HTTP requests.
nvd
CVE-2017-7336CRITICALCVSS 9.8≤ 8.3.02017-07-22
CVE-2017-7336 [CRITICAL] CWE-798 CVE-2017-7336: A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0 and lower versions allows a remote a
A hard-coded account named 'upgrade' in Fortinet FortiWLM 8.3.0 and lower versions allows a remote attacker to log-in and execute commands with 'upgrade' account privileges.
nvd
← Previous2 / 2