Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
fortinetFortiGuard LabsFG-IR-22-152
HistorySep 06, 2022 - 12:00 a.m.

FortiSOAR - Privilege escalation from nginx user to root

2022-09-0600:00:00
FortiGuard Labs
www.fortiguard.com
12
fortisoar
privilege escalation
nginx
cwe-269
vulnerability
gui user
python commands
root
system files
software

EPSS

0

Percentile

12.6%

JSON

An improper privilege management vulnerability [CWE-269] in FortiSOAR may allow a GUI user who has already found a way to modify system files (via another, unrelated and hypothetical exploit) to execute arbitrary Python commands as root.

Related

cvelist 1
prion 1
cnvd 1
cve 1
nvd 1
cvelist
cvelist
CVE-2022-30298
2022-09-06 15:10:29
prion
prion
Privilege escalation
2022-09-06 18:15:00
cnvd
cnvd
Fortinet FortiSOAR Rights Management Error Vulnerability
2022-11-16 00:00:00
cve
cve
CVE-2022-30298
2022-09-06 18:15:15
nvd
nvd
CVE-2022-30298
2022-09-06 18:15:15

EPSS

0

Percentile

12.6%

JSON
Related for FG-IR-22-152
cvelist1prion1cnvd1cve1nvd1