CVE-2024-47566 Information

Description

A improper limitation of a pathname to a restricted directory (‘path traversal’) [CWE-23] in Fortinet FortiRecorder version 7.2.0 through 7.2.1 and before 7.0.4 allows a privileged attacker to delete files from the underlying filesystem via crafted CLI requests.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-401