CVE-2023-26210

CVSS Score of 10 (low)

Details

Published Jun 13, 2023
Updated: Nov 7, 2023
CWE ID 78

Summary

CVE-2023-26210 is a vulnerability known as "Improper Neutralization of Special Elements used in an OS Command (OS Command Injection)" with a risk score of 26. It affects Fortinet FortiADCManager versions 7.1.0 and before 7.0.0, as well as FortiADC versions 7.2.0 and before 7.1.2. This vulnerability allows a local authenticated attacker to execute arbitrary shell code as the "root" user through crafted CLI requests. The potential danger it poses to organizations is high, with a base severity score of 7.8 out of 10 and impacts on integrity, confidentiality, and availability of the affected systems. There have been 81 reported hits related to this vulnerability so far.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-26210 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options