{"uuid": "1bf84c1f-7332-4a28-bb5b-239b5734a748", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-26012", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1766", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-26012\n\ud83d\udd39 Description: A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiAP-S 6.2 all verisons, and 6.4.0 through 6.4.9, FortiAP-W2 6.4 all versions, 7.0 all versions, 7.2.0 through 7.2.3, and 7.4.0 through 7.4.2, FortiAP 6.4 all versions, 7.0 all versions, 7.2.0 through 7.2.3, and 7.4.0 through 7.4.2 allow a local authenticated attacker to execute unauthorized code via the CLI.\n\ud83d\udccf Published: 2025-01-14T14:09:54.124Z\n\ud83d\udccf Modified: 2025-01-15T14:56:20.011Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-23-405", "creation_timestamp": "2025-01-15T15:10:41.000000Z"}