Fortinet Vulnerabilities
Severity: High
Fix/Workaround: Upgrade
Vulnerability Description:
FortiClient Linux Remote Code Execution due to dangerous nodejs configuration
By Anonymous on Apr 09, 2024 08:00 am
An Improper Control of Generation of Code (‚Code Injection‘) vulnerability [CWE-94] in FortiClientLinux may allow##an unauthenticated attacker to execute arbitrary code via tricking a FortiClientLinux user into visiting a malicious website.
Severity: High
Fix/Workaround: Upgrade
Vulnerability Description:
FortiClientMac – Lack of configuration file validation
By Anonymous on Apr 09, 2024 08:00 am
An external control of file name or path vulnerability [CWE-73] in FortiClientMac’s installer may allow a local attacker to execute arbitrary code or commands via writing a malicious configuration file in /tmp before starting the installation process.
Severity: High
Fix/Workaround: Upgrade
Vulnerability Description:
FortiOS & FortiProxy – administrator cookie leakage
By Anonymous on Apr 09, 2024 08:00 am
An insufficiently protected credentials vulnerability (CWE-522) in FortiOS and FortiProxy may allow an attacker to obtain the administrator cookie in rare and specific conditions, via tricking the administrator into visiting a malicious attacker-controlled website through the SSL-VPN.
Severity: High
Fix/Workaround: Upgrade
Vulnerability Description:
FortiSandbox – Arbitrary file delete on endpoint
By Anonymous on Apr 09, 2024 08:00 am
An improper limitation of a pathname to a restricted directory (‚Path Traversal‘) vulnerability [CWE-22] in FortiSandbox may allow an authenticated attacker with at least read-only permission to delete arbitrary files via crafted HTTP requests.
Severity: High
Fix/Workaround: Upgrade
Vulnerability Description:
FortiSandbox – OS command injection on endpoint
By Anonymous on Apr 09, 2024 08:00 am
Multiple improper neutralization of special elements used in an OS Command vulnerabilities [CWE-78] in FortiSandbox may allow an authenticated attacker with at least read-only permission to execute unauthorized commands via crafted requests.
