CVE-2021-26106
CVE-2021-26106
An improper neutralization of special elements used in an OS Command vulnerability in FortiAP's console 6.4.1 through 6.4.5 and 6.2.4 through 6.2.5 may allow an authenticated attacker to execute unauthorized commands by running the kdbg CLI command with specifically crafted arguments.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected products
Fortinet · Fortinet FortiAP-W2, FortiAP-S, FortiAPWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →