CVE-2021-22123

An OS command injection vulnerability in FortiWeb's management interface 6.3.7 and below, 6.2.3 and below, 6.1.x, 6.0.x, 5.9.x may allow a remote authenticated attacker to execute arbitrary commands on the system via the SAML server configuration page.
References
Link Resource
https://fortiguard.com/advisory/FG-IR-20-120 Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*
cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*

Information

Published : 2021-06-01 08:15

Updated : 2021-06-10 07:36


NVD link : CVE-2021-22123

Mitre link : CVE-2021-22123

Products Affected
No products.
CWE