Rewterz Threat Advisory – CVE-2021-1607 – Cisco Identity Services Engine Vulnerability
July 9, 2021Rewterz Threat Advisory – Multiple Cisco products Vulnerabilities
July 9, 2021Rewterz Threat Advisory – CVE-2021-1607 – Cisco Identity Services Engine Vulnerability
July 9, 2021Rewterz Threat Advisory – Multiple Cisco products Vulnerabilities
July 9, 2021Severity
Medium
Analysis Summary
CVE-2021-22125
An instance of improper neutralization of special elements in FortiSandbox’s sniffer module may allow an authenticated administrator to execute commands on the underlying system’s shell via altering the content of its configuration file.
Impact
- Code Execution
- Unauthorized Access
Affected Vendors
Fortinet
Affected Products
- FortiSandbox 3.2.1 and below.
- FortiSandbox 3.1.4 and below
Remediation
Refer to FortiGuard Advisory for patch, upgrade, or suggested workaround information.