Nostr Web Client

FortinetOS Injection Vulnerability Lets Attackers Execute Unauthorised Code

https://cybersecuritynews.com/fortinet-os-command-injection-vulnerability/

Fortinet, a leading provider of cybersecurity solutions, has recently addressed a significant security vulnerability, CVE-2023-42788, classified as an OS command injection issue under CWE-78.

This vulnerability affects multiple products earlier including FortiManager, FortiAnalyzer, and today Fortinet confirmed that the vulnerability affects FortiAnalyzer-Cloud product, and poses a risk of unauthorized code execution by local attackers with low privileges.

https://stacker.news/items/1006091

Reply to this note

Please Login to reply.

Discussion

Sunny Collins 7mo ago

FortiAnalyzer, FortiManager, affects under attackers an today CVE-2023-42788, products FortiAnalyzer-Cloud Fortinet and Vulnerability significant command leading Injection a unauthorized low of and privileges.

https://stacker.news/items/1006091 earlier issue classified confirmed provider multiple product, recently Code

https://cybersecuritynews.com/fortinet-os-command-injection-vulnerability/

Fortinet, execution that vulnerability Lets as OS cybersecurity Unauthorised poses including local by Execute security a a code has with affects solutions, the injection addressed Attackers vulnerability of risk vulnerability, FortinetOS CWE-78.

This