An improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests.
The vulnerability results from improper neutralization of special characters in operating system commands (CWE-78). An attacker can submit specially crafted requests to the FortiSIEM API containing malicious input data that is not properly filtered before being passed to the system shell. As a result, injected commands are executed with the privileges of the API handling process, without requiring authentication.
An attacker can remotely execute arbitrary code or system commands on the FortiSIEM server, which may lead to complete system takeover, data breach, and violation of confidentiality, integrity, and availability.
Apply patches available from the vendor according to references — detailed information about patched versions is available in the Fortinet security bulletin at https://fortiguard.com/psirt/FG-IR-23-130
Fortinet FortiSIEM — versions indicated in vendor references (details in bulletin FG-IR-23-130 at fortiguard.com)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HFortinet Fortisiem
APPFortinet7.1.07.1.16.6.0 – 6.6.36.4.0 – 6.4.27.0.0 – 7.0.26.7.0 – 6.7.86.5.0 – 6.5.2
Related vulnerabilities
Command injection w Fortinet FortiSIEM — RCE przez TCP
Krytyczny pre-auth command injection w Fortinet FortiSIEM (RCE)
Path Traversal w Fortinet FortiSIEM umożliwiający eskalację uprawnień
Command Injection w Fortinet FortiSIEM umożliwiający zdalne wykonanie kodu
A improper neutralization of special elements used in an os command ('os command injection') in Fortinet Forti...