CVE-2021-26115 Information

Description

An OS command injection (CWE-78) vulnerability in FortiWAN version 4.5.7 and below Command Line Interface may allow a local authenticated and unprivileged attacker to escalate their privileges to root via executing a specially-crafted command.An OS command injection (CWE-78) vulnerability in FortiWAN Command Line Interface may allow a local authenticated and unprivileged attacker to escalate their privileges to root via executing a specially-crafted command.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-21-069