SQL Injection Vulnerability in Fortinet FortiManager Products
CVE-2015-3616

9.8CRITICAL

Key Information:

Vendor: Fortinet
Status: Fortimanager Firmware
Vendor: CVE Published:; 11 August 2017

What is CVE-2015-3616?

A vulnerability exists in Fortinet FortiManager versions 5.0.x prior to 5.0.11 and 5.2.x prior to 5.2.2, which allows remote attackers to execute arbitrary commands. This is facilitated through various unspecified parameters, posing a significant risk to the integrity and security of the affected systems.