OS Command Injection Vulnerability in FortiManager, FortiAnalyzer, and FortiADC
CVE-2023-25607

7.4HIGH

Key Information:

Vendor: Fortinet
Status: Fortianalyzer; Fortimanager; Fortiadc
Vendor: CVE Published:; 10 October 2023

Summary

This vulnerability arises from inadequate neutralization of special elements used in OS commands within FortiManager, FortiAnalyzer, and FortiADC management interfaces. It potentially allows an authenticated attacker with at least READ permissions on system settings to execute arbitrary commands on the underlying shell through unsafe usage of the wordexp function. This could lead to unauthorized access and manipulation of the underlying system.

Affected Version(s)

FortiADC 7.1.0

FortiADC 7.0.0 <= 7.0.3

FortiADC 6.2.0 <= 6.2.6

References

https://fortiguard.com/psirt/FG-IR-22-352

CVSS V3.1

Score:

7.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 10, 2023
Vulnerability Reserved
Feb 8, 2023