Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] vulnerabilit…
Summary
An Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability [CWE-22] vulnerability in Fortinet FortiSOAR Agent Communication Bridge 1.1.0, FortiSOAR Agent Communication Bridge 1.0 all versions may allow an unauthenticated attacker to read files accessible to the fortisoar user on a system where the agent is deployed, via sending a crafted request to the agent port.
- FortiSOAR Agent Communication Bridge 1.1: 1.1.0
- FortiSOAR Agent Communication Bridge 1.0: 1.0 all versions
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
- FortiSOAR Agent Communication Bridge 1.1: 1.1.1
- FortiSOAR Agent Communication Bridge 1.0: migrate to a fixed release
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Mitigation checklist
- Upgrade per the Affected/Solution table: FortiSOAR Agent Communication Bridge 1.1: 1.1.1; FortiSOAR Agent Communication Bridge 1.0: migrate to a fixed release.
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.