Lucene search
China National Vulnerability DatabaseCNVD-2022-09244HistoryFeb 08, 2022 - 12:00 a.m.
Fortinet FortiWeb OS Command Injection Vulnerability
2022-02-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
fortinet fortiweb
command injection
vulnerability
web application layer
firewall
sql injection
cross-site scripting
cookie poisoning
schema poisoning
http requests
threats
database content
EPSS
0.001
Percentile
48.5%
Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. fortinet FortiWeb An operating system command injection vulnerability exists that could be exploited by an attacker to execute unauthorized code or commands via specially crafted HTTP requests.
Related
cve
cve
CVE-2021-41018
2022-02-02 12:15:08
cvelist
cvelist
CVE-2021-41018
2022-02-02 11:25:14
nvd
nvd
CVE-2021-41018
2022-02-02 12:15:08
prion
prion
Command injection
2022-02-02 12:15:00
fortinet
fortinet
FortiWeb - OS command injection due to unsafe input validation function
2022-02-01 00:00:00