FortiManager, FortiAnalyzer, FortiAnalyzer-BigData & FortiPortal – Format string vulnerability in administrative interface

Fortiguard Security Advisory

A use of externally-controlled format string vulnerability [CWE-134] in FortiManager, FortiAnalyzer, FortiAnalyzer-BigData & FortiPortal may allow a privileged attacker to execute unauthorized code or commands via specially crafted command arguments.

READ MORE