CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-43070

Multiple relative path traversal vulnerabilities [CWE-23] in FortiWLM management interface 8.6.2 and below, 8.5.2 and below, 8.4.2 and below, 8.3.3 and below, 8.2.2 may allow an authenticated attacker to retrieve arbitrary files from the underlying filesystem via specially crafted web requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 40.6%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 4.0

References

Products affected by CVE-2021-43070

Fortinet » Fortiwlm » Version: 8.2.2

cpe:2.3:a:fortinet:fortiwlm:8.2.2
Fortinet » Fortiwlm » Version: 8.3.0

cpe:2.3:a:fortinet:fortiwlm:8.3.0
Fortinet » Fortiwlm » Version: 8.3.1

cpe:2.3:a:fortinet:fortiwlm:8.3.1
Fortinet » Fortiwlm » Version: 8.3.2

cpe:2.3:a:fortinet:fortiwlm:8.3.2
Fortinet » Fortiwlm » Version: 8.3.3

cpe:2.3:a:fortinet:fortiwlm:8.3.3
Fortinet » Fortiwlm » Version: 8.4.0

cpe:2.3:a:fortinet:fortiwlm:8.4.0
Fortinet » Fortiwlm » Version: 8.4.1

cpe:2.3:a:fortinet:fortiwlm:8.4.1
Fortinet » Fortiwlm » Version: 8.4.2

cpe:2.3:a:fortinet:fortiwlm:8.4.2
Fortinet » Fortiwlm » Version: 8.5.0

cpe:2.3:a:fortinet:fortiwlm:8.5.0
Fortinet » Fortiwlm » Version: 8.5.1

cpe:2.3:a:fortinet:fortiwlm:8.5.1
Fortinet » Fortiwlm » Version: 8.5.2

cpe:2.3:a:fortinet:fortiwlm:8.5.2
Fortinet » Fortiwlm » Version: 8.6.0

cpe:2.3:a:fortinet:fortiwlm:8.6.0
Fortinet » Fortiwlm » Version: 8.6.1

cpe:2.3:a:fortinet:fortiwlm:8.6.1
Fortinet » Fortiwlm » Version: 8.6.2

cpe:2.3:a:fortinet:fortiwlm:8.6.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-43070

Products

Pricing

Contact Us