FortiSOAR - Privilege escalation from nginx user to root


An improper privilege management vulnerability [CWE-269] in FortiSOAR may allow a GUI user who has already found a way to modify system files (via another, unrelated and hypothetical exploit) to execute arbitrary Python commands as root.

Version Affected Solution
FortiSOAR 7.2 7.2.0 Upgrade to 7.2.1 or above
FortiSOAR 7.0 7.0.0 through 7.0.2 Upgrade to 7.0.3 or above
FortiSOAR 6.4 6.4 all versions Migrate to a fixed release


Fortinet is pleased to thank security researchers Ryan Catterall and OJ Reeves of Beyond Binary for discovering and reporting this vulnerability under responsible disclosure.