VYPR
Unrated severityNVD Advisory· Published Aug 4, 2021· Updated Oct 25, 2024

CVE-2021-24010

CVE-2021-24010

Description

Improper limitation of a pathname to a restricted directory vulnerabilities in FortiSandbox 3.2.0 through 3.2.2, and 3.1.0 through 3.1.4 may allow an authenticated user to obtain unauthorized access to files and data via specifially crafted web requests.

Affected products

2
  • Fortinet/Fortisandboxllm-fuzzy2 versions
    >=3.1.0, <=3.1.4 and >=3.2.0, <=3.2.2+ 1 more
    • (no CPE)range: >=3.1.0, <=3.1.4 and >=3.2.0, <=3.2.2
    • (no CPE)range: FortiSandbox 3.2.2, 3.2.1, 3.2.0, 3.1.4, 3.1.3, 3.1.2, 3.1.1, 3.1.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.

CVE-2021-24010 · VYPR