Security Advisory

CVE-2021-32590

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-04 13:31:30

Last updated 2024-10-25 13:54:01

Assigner fortinet

State PUBLISHED

Description

Multiple improper neutralization of special elements used in an SQL command vulnerabilities in FortiPortal 6.0.0 through 6.0.4, 5.3.0 through 5.3.5, 5.2.0 through 5.2.5, and 4.2.2 and earlier may allow an attacker with regular users privileges to execute arbitrary commands on the underlying SQL database via specifically crafted HTTP requests.

← Browse all CVEs View on cve.org ↗