CVE-2024-47566 - CERT CVE

  1. CVE-2024-47566

ID CVE-2024-47566
Sažetak A improper limitation of a pathname to a restricted directory ('path traversal') [CWE-23] in Fortinet FortiRecorder version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to delete files from the underlying filesystem via crafted CLI requests.
Reference
CVSS
Base: 5.1
Impact: 4.2
Exploitability:0.8
Pristup
VektorSloženostAutentikacija
LOCAL LOW HIGH
Impact
PovjerljivostCjelovitostDostupnost
NONE LOW HIGH
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H
Zadnje važnije ažuriranje 14-01-2025 - 14:15
Objavljeno 14-01-2025 - 14:15