VYPR
High severity8.8NVD Advisory· Published Sep 21, 2016· Updated Jun 17, 2026

CVE-2016-4965

CVE-2016-4965

Description

Fortinet FortiWan (formerly AscernLink) before 4.2.5 allows remote authenticated users with access to the nslookup functionality to execute arbitrary commands with root privileges via the graph parameter to diagnosis_control.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Fortinet/Fortiwan2 versions
    cpe:2.3:a:fortinet:fortiwan:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:fortinet:fortiwan:*:*:*:*:*:*:*:*range: <=4.2.4
    • (no CPE)range: <4.2.5

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.