2022-04-06 09:15:26
fortinet
PUBLISHED
Multiple improper neutralization of special elements used in an OS command vulnerabilities (CWE-78) in the Web GUI of FortiWAN before 4.5.9 may allow an authenticated attacker to execute arbitrary commands on the underlying systems shell via specifically crafted HTTP requests.