CVE-2024-48889 | Fortinet FortiManager up to 6.4.14/7.0.12/7.2.7/7.4.4/7.6.0 FGFM Request os command injection (FG-IR-24-425)

Posted by Angelo Barbosa | Dec 18, 2024 | CVE

A vulnerability has been found in Fortinet FortiManager up to 6.4.14/7.0.12/7.2.7/7.4.4/7.6.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the component FGFM Request Handler. The manipulation leads to os command injection.

This vulnerability is known as CVE-2024-48889. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-48889 | Fortinet FortiManager up to 6.4.14/7.0.12/7.2.7/7.4.4/7.6.0 FGFM Request os command injection (FG-IR-24-425)

Related Posts

CVE-2024-38088 | Microsoft unknown vulnerability

CVE-2024-2189 | WPZOOM Social Icons Widget & Block Plugin up to 4.2.17 on WordPress Setting cross site scripting

CVE-2023-49473 | Shenzhen JF6000 Cloud Media Collaboration Processing Platform access control

CVE-2024-54230 | WPRealizer Unlock Addons for Elementor Plugin up to 1.0.0 on WordPress cross site scripting