OS Command Injection Vulnerability in FortiWeb by Fortinet
CVE-2021-22123

7.6HIGH

Key Information:

Vendor: Fortinet
Status: Fortinet Fortiweb
Vendor: CVE Published:; 1 June 2021

Badges

👾 Exploit Exists🟡 Public PoC

Summary

FortiWeb's management interface exhibits an OS command injection vulnerability, allowing remote authenticated attackers to execute arbitrary commands on affected systems. This exploit targets the SAML server configuration page, where improper validation can enable an attacker to manipulate backend commands, potentially compromising the entire system. Users of FortiWeb versions 6.3.7 and below, along with earlier versions 6.2.3, 6.1.x, 6.0.x, and 5.9.x, should take immediate actions to patch their systems as per the advisory provided by Fortinet.

Affected Version(s)

Fortinet FortiWeb FortiWeb 6.3.7 and below, 6.2.3 and below, 6.1.x, 6.0.x, 5.9.x

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2021-22123
Created by murataydemir

References

https://fortiguard.com/advisory/FG-IR-20-120

x_refsource_CONFIRM

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Aug 18, 2021
👾
Exploit known to exist
Aug 18, 2021
Vulnerability published
Jun 1, 2021
Vulnerability Reserved
Jan 4, 2021