A use of externally-controlled format string vulnerability [CWE-134] in the Fclicense daemon of FortiOS may allow a remote authenticated attacker to execute arbitrary code or commands via specially crafted requests.
CPE | Name | Operator | Version |
---|---|---|---|
fortipam | eq | 1.0.3 | |
fortipam | eq | 1.0.2 | |
fortipam | eq | 1.0.1 | |
fortipam | eq | 1.0.0 | |
fortiproxy | eq | 7.2.4 | |
fortiproxy | eq | 7.2.3 | |
fortiproxy | eq | 7.2.2 | |
fortiproxy | eq | 7.2.1 | |
fortiproxy | eq | 7.2.0 | |
fortiproxy | eq | 7.0.10 |