exploitDog

GHSA-j2cq-g9qm-4pcv

Опубликовано: 11 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

Multiple improper neutralization of special elements used in an OS Command vulnerabilities [CWE-78] in FortiSandbox before 4.4.5 allows a privileged attacker to execute unauthorized commands via crafted requests.

Multiple improper neutralization of special elements used in an OS Command vulnerabilities [CWE-78] in FortiSandbox before 4.4.5 allows a privileged attacker to execute unauthorized commands via crafted requests.

Ссылки

EPSS

Процентиль: 37%

0.0016

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2024-54018

CVSS3: 7.2

nvd

11 месяцев назад

Multiple improper neutralization of special elements used in an OS Command vulnerabilities [CWE-78] in FortiSandbox before 4.4.5 allows a privileged attacker to execute unauthorized commands via crafted requests.

EPSS

Процентиль: 37%

0.0016

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-78