Vulnerability CVE-2024-23671
Published: 2024-04-09

Description:
A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet FortiSandbox version 4.4.0 through 4.4.3 and 4.2.0 through 4.2.6 and 4.0.0 through 4.0.4 allows attacker to execute unauthorized code or commands via crafted HTTP requests.

Type:

CWE-22

 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

 References:
https://fortiguard.com/psirt/FG-IR-23-454
Copyright 2026, cxsecurity.com

 

Back to Top