2025-01-14 14:09:35
fortinet
PUBLISHED
A improper limitation of a pathname to a restricted directory (path traversal) [CWE-23] in Fortinet FortiRecorder version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to delete files from the underlying filesystem via crafted CLI requests.