VYPR
Unrated severityNVD Advisory· Published Jul 12, 2021· Updated Oct 25, 2024

CVE-2021-24015

CVE-2021-24015

Description

An improper neutralization of special elements used in an OS Command vulnerability in the administrative interface of FortiMail before 6.4.4 may allow an authenticated attacker to execute unauthorized commands via specifically crafted HTTP requests.

Affected products

2
  • Fortinet/Fortimailllm-fuzzy2 versions
    <6.4.4+ 1 more
    • (no CPE)range: <6.4.4
    • (no CPE)range: FortiMail before 6.4.4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.