CVE-2019-15708
EUVD-2019-664415.03.2020, 23:15
A system command injection vulnerability in the FortiAP-S/W2 6.2.1, 6.2.0, 6.0.5 and below, FortiAP 6.0.5 and below and FortiAP-U below 6.0.0 under CLI admin console may allow unauthorized administrators to run arbitrary system level commands via specially crafted ifconfig commands.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| fortinet | fortiap | 𝑥 ≤ 6.0.5 |
| fortinet | fortiap-s | 𝑥 ≤ 6.0.5 |
| fortinet | fortiap-s | 6.2.0 |
| fortinet | fortiap-s | 6.2.1 |
| fortinet | fortiap-u | 𝑥 ≤ 6.0.0 |
| fortinet | fortiap-w2 | 𝑥 ≤ 6.0.5 |
| fortinet | fortiap-w2 | 6.2.0 |
| fortinet | fortiap-w2 | 6.2.1 |
𝑥
= Vulnerable software versions