VYPR
Unrated severityNVD Advisory· Published Jul 9, 2021· Updated Oct 25, 2024

CVE-2021-26106

CVE-2021-26106

Description

An improper neutralization of special elements used in an OS Command vulnerability in FortiAP's console 6.4.1 through 6.4.5 and 6.2.4 through 6.2.5 may allow an authenticated attacker to execute unauthorized commands by running the kdbg CLI command with specifically crafted arguments.

Affected products

2
  • Range: >=6.2.4, <=6.2.5 and >=6.4.1, <=6.4.5
  • Range: FortiAP-W2 6.2.4 through 6.2.5; FortiAP-S 6.2.4 through 6.2.5; FortiAP 6.4.1 through 6.4.5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.