CVE-2024-55597 Information

Description

A improper limitation of a pathname to a restricted directory (‘path traversal’) in Fortinet FortiWeb versions 7.0.0 through 7.6.0 allows attacker to execute unauthorized code or commands via crafted requests.

Reference

https://fortiguard.fortinet.com/psirt/FG-IR-24-439