Search criteria

3 vulnerabilities found for fortiap-u by fortinet

CVE-2025-53680 (GCVE-0-2025-53680)

Vulnerability from cvelistv5 – Published: 2026-05-12 16:54 – Updated: 2026-05-13 03:58
VLAI?
Summary
An improper neutralization of special elements used in an OS command ("OS Command Injection") vulnerability [CWE-78] vulnerability in Fortinet FortiAP 7.6.0 through 7.6.2, FortiAP 7.4.0 through 7.4.5, FortiAP 7.2 all versions, FortiAP 7.0 all versions, FortiAP 6.4 all versions, FortiAP-U 7.0.0 through 7.0.5, FortiAP-U 6.2 all versions, FortiAP-W2 7.4.0 through 7.4.4, FortiAP-W2 7.2 all versions, FortiAP-W2 7.0 all versions allows an authenticated privileged attacker to execute unauthorized code or commands via crafted CLI requests.
CWE
  • CWE-78 - Execute unauthorized code or commands
Assigner
Impacted products
Vendor Product Version
Fortinet FortiAP Affected: 7.6.0 , ≤ 7.6.2 (semver)
Affected: 7.4.0 , ≤ 7.4.5 (semver)
Affected: 7.2.0 , ≤ 7.2.6 (semver)
Affected: 7.0.0 , ≤ 7.0.7 (semver)
Affected: 6.4.3 , ≤ 6.4.9 (semver)
    cpe:2.3:a:fortinet:fortiap:7.6.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.6.0:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:7.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:6.4.9:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:6.4.8:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:6.4.7:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:6.4.6:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:6.4.5:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:6.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap:6.4.3:*:*:*:*:*:*:*
Create a notification for this product.
    Fortinet FortiAP-W2 Affected: 7.4.0 , ≤ 7.4.4 (semver)
Affected: 7.2.0 , ≤ 7.2.5 (semver)
Affected: 7.0.0 , ≤ 7.0.8 (semver)
    cpe:2.3:a:fortinet:fortiap-w2:7.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.8:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-w2:7.0.0:*:*:*:*:*:*:*
Create a notification for this product.
    Fortinet FortiAP-U Affected: 7.0.0 , ≤ 7.0.5 (semver)
Affected: 6.2.0 , ≤ 6.2.6 (semver)
    cpe:2.3:a:fortinet:fortiap-u:7.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:7.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:7.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:7.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:6.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:6.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:6.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:6.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:6.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:6.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:fortinet:fortiap-u:6.2.0:*:*:*:*:*:*:*
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-53680",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-12T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-13T03:58:25.615Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:fortinet:fortiap:7.6.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.6.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.6.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.4.5:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.4.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.4.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.4.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.4.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.4.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.2.6:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.2.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.2.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.0.7:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.0.6:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.0.5:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.0.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:7.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:6.4.9:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:6.4.8:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:6.4.7:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:6.4.6:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:6.4.5:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:6.4.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap:6.4.3:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "FortiAP",
          "vendor": "Fortinet",
          "versions": [
            {
              "lessThanOrEqual": "7.6.2",
              "status": "affected",
              "version": "7.6.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.4.5",
              "status": "affected",
              "version": "7.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.2.6",
              "status": "affected",
              "version": "7.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.7",
              "status": "affected",
              "version": "7.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.4.9",
              "status": "affected",
              "version": "6.4.3",
              "versionType": "semver"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:fortinet:fortiap-w2:7.4.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.4.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.4.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.4.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.4.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.2.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.2.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.8:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.7:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.6:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.5:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-w2:7.0.0:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "FortiAP-W2",
          "vendor": "Fortinet",
          "versions": [
            {
              "lessThanOrEqual": "7.4.4",
              "status": "affected",
              "version": "7.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.2.5",
              "status": "affected",
              "version": "7.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.8",
              "status": "affected",
              "version": "7.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:a:fortinet:fortiap-u:7.0.5:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:7.0.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:7.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:7.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:7.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:7.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:6.2.6:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:6.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:6.2.4:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:6.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:6.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:6.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:fortinet:fortiap-u:6.2.0:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "FortiAP-U",
          "vendor": "Fortinet",
          "versions": [
            {
              "lessThanOrEqual": "7.0.5",
              "status": "affected",
              "version": "7.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.2.6",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An improper neutralization of special elements used in an OS command (\"OS Command Injection\") vulnerability [CWE-78] vulnerability in Fortinet FortiAP 7.6.0 through 7.6.2, FortiAP 7.4.0 through 7.4.5, FortiAP 7.2 all versions, FortiAP 7.0 all versions, FortiAP 6.4 all versions, FortiAP-U 7.0.0 through 7.0.5, FortiAP-U 6.2 all versions, FortiAP-W2 7.4.0 through 7.4.4, FortiAP-W2 7.2 all versions, FortiAP-W2 7.0 all versions allows an authenticated privileged attacker to execute unauthorized code or commands via crafted CLI requests."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "Execute unauthorized code or commands",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-12T16:54:15.555Z",
        "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "shortName": "fortinet"
      },
      "references": [
        {
          "name": "https://fortiguard.fortinet.com/psirt/FG-IR-26-131",
          "url": "https://fortiguard.fortinet.com/psirt/FG-IR-26-131"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Upgrade to FortiAP-U version 7.0.6 or above\nUpgrade to FortiAP-W2 version 7.4.5 or above\nUpgrade to FortiAP version 7.6.3 or above\nUpgrade to FortiAP version 7.4.6 or above"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
    "assignerShortName": "fortinet",
    "cveId": "CVE-2025-53680",
    "datePublished": "2026-05-12T16:54:15.555Z",
    "dateReserved": "2025-07-08T09:23:05.011Z",
    "dateUpdated": "2026-05-13T03:58:25.615Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2023-36634 (GCVE-0-2023-36634)

Vulnerability from cvelistv5 – Published: 2023-09-13 12:29 – Updated: 2024-09-24 19:59
VLAI?
Summary
An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command line interpreter of FortiAP-U 7.0.0, 6.2.0 through 6.2.5, 6.0 all versions, 5.4 all versions may allow an authenticated attacker to list and delete arbitrary files and directory via specially crafted command arguments.
CWE
  • CWE-73 - Improper access control
Assigner
Impacted products
Vendor Product Version
Fortinet FortiAP-U Affected: 7.0.0
Affected: 6.2.0 , ≤ 6.2.5 (semver)
Affected: 6.0.0 , ≤ 6.0.4 (semver)
Affected: 5.4.3 , ≤ 5.4.6 (semver)
Affected: 5.4.0
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T16:52:53.999Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://fortiguard.com/psirt/FG-IR-23-123",
            "tags": [
              "x_transferred"
            ],
            "url": "https://fortiguard.com/psirt/FG-IR-23-123"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-36634",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-24T19:45:17.934399Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-24T19:59:21.111Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FortiAP-U",
          "vendor": "Fortinet",
          "versions": [
            {
              "status": "affected",
              "version": "7.0.0"
            },
            {
              "lessThanOrEqual": "6.2.5",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.4",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.6",
              "status": "affected",
              "version": "5.4.3",
              "versionType": "semver"
            },
            {
              "status": "affected",
              "version": "5.4.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command line interpreter of FortiAP-U 7.0.0, 6.2.0 through 6.2.5, 6.0 all versions, 5.4 all versions may allow an authenticated attacker to list and delete arbitrary files and directory via specially crafted command arguments."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H/E:P/RL:X/RC:R",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-73",
              "description": "Improper access control",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-13T12:29:31.577Z",
        "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "shortName": "fortinet"
      },
      "references": [
        {
          "name": "https://fortiguard.com/psirt/FG-IR-23-123",
          "url": "https://fortiguard.com/psirt/FG-IR-23-123"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Please upgrade to FortiAP-U version 7.0.1 or above Please upgrade to FortiAP-U version 6.2.6 or above "
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
    "assignerShortName": "fortinet",
    "cveId": "CVE-2023-36634",
    "datePublished": "2023-09-13T12:29:31.577Z",
    "dateReserved": "2023-06-25T18:03:39.226Z",
    "dateUpdated": "2024-09-24T19:59:21.111Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-25608 (GCVE-0-2023-25608)

Vulnerability from cvelistv5 – Published: 2023-09-13 12:28 – Updated: 2024-09-24 20:00
VLAI?
Summary
An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command line interpreter of FortiAP-W2 7.2.0 through 7.2.1, 7.0.3 through 7.0.5, 7.0.0 through 7.0.1, 6.4 all versions, 6.2 all versions, 6.0 all versions; FortiAP-C 5.4.0 through 5.4.4, 5.2 all versions; FortiAP 7.2.0 through 7.2.1, 7.0.0 through 7.0.5, 6.4 all versions, 6.0 all versions; FortiAP-U 7.0.0, 6.2.0 through 6.2.5, 6.0 all versions, 5.4 all versions may allow an authenticated attacker to read arbitrary files via specially crafted command arguments.
CWE
Assigner
Impacted products
Vendor Product Version
Fortinet FortiAP-W2 Affected: 7.2.0 , ≤ 7.2.1 (semver)
Affected: 7.0.3 , ≤ 7.0.5 (semver)
Affected: 7.0.0 , ≤ 7.0.1 (semver)
Affected: 6.4.0 , ≤ 6.4.9 (semver)
Affected: 6.2.0 , ≤ 6.2.6 (semver)
Affected: 6.0.0 , ≤ 6.0.6 (semver)
Create a notification for this product.
    Fortinet FortiAP-C Affected: 5.4.0 , ≤ 5.4.4 (semver)
Affected: 5.2.0 , ≤ 5.2.1 (semver)
Create a notification for this product.
    Fortinet FortiAP Affected: 7.2.0 , ≤ 7.2.1 (semver)
Affected: 7.0.0 , ≤ 7.0.5 (semver)
Affected: 6.4.3 , ≤ 6.4.9 (semver)
Affected: 6.0.0 , ≤ 6.0.6 (semver)
Create a notification for this product.
    Fortinet FortiAP-U Affected: 7.0.0
Affected: 6.2.0 , ≤ 6.2.5 (semver)
Affected: 6.0.0 , ≤ 6.0.4 (semver)
Affected: 5.4.3 , ≤ 5.4.6 (semver)
Affected: 5.4.0
Create a notification for this product.
    Fortinet FortiAP-S Affected: 6.4.0 , ≤ 6.4.9 (semver)
Affected: 6.2.0 , ≤ 6.2.6 (semver)
Affected: 6.0.0 , ≤ 6.0.6 (semver)
Create a notification for this product.
Show details on NVD website

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T11:25:19.383Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "https://fortiguard.com/psirt/FG-IR-22-120",
            "tags": [
              "x_transferred"
            ],
            "url": "https://fortiguard.com/psirt/FG-IR-22-120"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-25608",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-24T19:45:36.151614Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-24T20:00:10.726Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "FortiAP-W2",
          "vendor": "Fortinet",
          "versions": [
            {
              "lessThanOrEqual": "7.2.1",
              "status": "affected",
              "version": "7.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.5",
              "status": "affected",
              "version": "7.0.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.1",
              "status": "affected",
              "version": "7.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.4.9",
              "status": "affected",
              "version": "6.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.2.6",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.6",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FortiAP-C",
          "vendor": "Fortinet",
          "versions": [
            {
              "lessThanOrEqual": "5.4.4",
              "status": "affected",
              "version": "5.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.2.1",
              "status": "affected",
              "version": "5.2.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FortiAP",
          "vendor": "Fortinet",
          "versions": [
            {
              "lessThanOrEqual": "7.2.1",
              "status": "affected",
              "version": "7.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.5",
              "status": "affected",
              "version": "7.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.4.9",
              "status": "affected",
              "version": "6.4.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.6",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FortiAP-U",
          "vendor": "Fortinet",
          "versions": [
            {
              "status": "affected",
              "version": "7.0.0"
            },
            {
              "lessThanOrEqual": "6.2.5",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.4",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.6",
              "status": "affected",
              "version": "5.4.3",
              "versionType": "semver"
            },
            {
              "status": "affected",
              "version": "5.4.0"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "FortiAP-S",
          "vendor": "Fortinet",
          "versions": [
            {
              "lessThanOrEqual": "6.4.9",
              "status": "affected",
              "version": "6.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.2.6",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.6",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An incomplete filtering of one or more instances of special elements vulnerability [CWE-792] in the command line interpreter of FortiAP-W2 7.2.0 through 7.2.1, 7.0.3 through 7.0.5, 7.0.0 through 7.0.1, 6.4 all versions, 6.2 all versions, 6.0 all versions; FortiAP-C 5.4.0 through 5.4.4, 5.2 all versions; FortiAP 7.2.0 through 7.2.1, 7.0.0 through 7.0.5, 6.4 all versions, 6.0 all versions; FortiAP-U 7.0.0, 6.2.0 through 6.2.5, 6.0 all versions, 5.4 all versions may allow an authenticated attacker to read arbitrary files via specially crafted command arguments."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:U/RC:C",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-792",
              "description": "Information disclosure",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-09-13T12:28:51.497Z",
        "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "shortName": "fortinet"
      },
      "references": [
        {
          "name": "https://fortiguard.com/psirt/FG-IR-22-120",
          "url": "https://fortiguard.com/psirt/FG-IR-22-120"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Please upgrade to FortiAP-W2 version 7.2.2 or above Please upgrade to FortiAP-W2 version 7.0.6 or above Please upgrade to FortiAP-C version 5.4.5 or above Please upgrade to FortiAP version 7.2.2 or above Please upgrade to FortiAP version 7.0.6 or above Please upgrade to FortiAP-U version 7.0.1 or above Please upgrade to FortiAP-U version 6.2.6 or above "
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
    "assignerShortName": "fortinet",
    "cveId": "CVE-2023-25608",
    "datePublished": "2023-09-13T12:28:51.497Z",
    "dateReserved": "2023-02-08T13:42:03.367Z",
    "dateUpdated": "2024-09-24T20:00:10.726Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}