VYPR
Unrated severityNVD Advisory· Published Feb 2, 2022· Updated Oct 22, 2024

CVE-2021-42753

CVE-2021-42753

Description

An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in FortiWeb management interface 6.4.1 and below, 6.3.15 and below, 6.2.x, 6.1.x, 6.0.x, 5.9.x and 5.8.x may allow an authenticated attacker to perform an arbitrary file and directory deletion in the device filesystem.

Affected products

2
  • Fortinet/FortiWeb management interfacedescription
  • Range: <=6.4.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.