CVE-2024-55594 – Fortinet FortiWeb HTTP/S Command Injection

March 14, 2025
7:19 pm

CVE ID : CVE-2024-55594

Published : March 14, 2025, 5:15 p.m. | 1 hour, 44 minutes ago

Description : An improper handling of syntactically invalid structure in Fortinet FortiWeb at least vesrions 7.4.0 through 7.4.6 and 7.2.0 through 7.2.10 and 7.0.0 through 7.0.10 allows attacker to execute unauthorized code or commands via HTTP/S crafted requests.

Severity: 5.6 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-55594 – Fortinet FortiWeb HTTP/S Command Injection

Elvescore.io

Recent Posts

CVE-2025-2347 – IROAD Dash Cam FX2 Default Password Use Local Network Vulnerability (Authentication Bypass)

CVE-2025-2348 – IROAD Dash Cam FX2 HTTP/RTSP Information Disclosure Vulnerability

CVE-2025-2349 – IROAD Dash Cam FX2 Password Hash Handler Insufficient Computational Effort Vulnerability

CVE-2025-2350 – IROAD Dash Cam FX2 Unrestricted File Upload Vulnerability

CVE-2025-2345 – “IROAD Dash Cam X5 and Dash Cam X6 Remote Unauthenticated RCE”

CVE-2025-2346 – IROAD Dash Cam X5 and X6 Cross-Site Scripting (XSS) Vulnerability

CVE-2024-55594 – Fortinet FortiWeb HTTP/S Command Injection

CVE-2024-55594 – Fortinet FortiWeb HTTP/S Command Injection