High severity7.2NVD Advisory· Published Oct 26, 2017· Updated May 13, 2026

CVE-2017-7341

Description

An OS Command Injection vulnerability in Fortinet FortiWLC 6.1-2 through 6.1-5, 7.0-7 through 7.0-10, 8.0 through 8.2, and 8.3.0 through 8.3.2 file management AP script download webUI page allows an authenticated admin user to execute arbitrary system console commands via crafted HTTP requests.

Affected products

Fortinet/Fortiwlc
cpe:2.3:a:fortinet:fortiwlc:*:*:*:*:*:*:*:*
Range: >=6.1-2,<=6.1-5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/101273nvdThird Party AdvisoryVDB Entry
fortiguard.com/psirt/FG-IR-17-119nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.468
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000