CVE-2024-50569

CVSS 3.1 Score 6.6 of 10 (medium)

Details

Published Feb 11, 2025

CWE ID 78

Summary

CVE-2024-50569 is a new vulnerability affecting Fortinet FortiWeb versions 7.0.0 through 7.6.0. This issue involves an improper handling of special elements in operating system commands, which is also known as os command injection. Hackers can exploit this vulnerability to execute unauthorized code or commands by providing specially crafted input, potentially leading to serious security consequences. Fortinet urges users to update their software to a patched version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

FortiWeb

Affected Vendors

Fortinet

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/zzyfSj
https://www.cve.org/CVERecord?id=CVE-2024-50569
https://nvd.nist.gov/vuln/detail/CVE-2024-50569

Back to Vulnerability Database