FortiADC - Path traversal vulnerability in CLI

Summary

A relative path traversal vulnerability [CWE-23] in FortiADC may allow a privileged attacker to delete arbitrary directories from the underlying file system via crafted CLI commands.

Version Affected Solution
FortiADC 7.2 7.2.0 Upgrade to 7.2.1 or above
FortiADC 7.1 7.1.0 through 7.1.1 Upgrade to 7.1.2 or above
FortiADC 7.0 7.0 all versions Migrate to a fixed release
FortiADC 6.2 6.2 all versions Migrate to a fixed release
FortiADC 6.1 6.1 all versions Migrate to a fixed release
FortiADC 6.0 6.0 all versions Migrate to a fixed release
FortiADC 5.4 5.4 all versions Migrate to a fixed release
FortiADC 5.3 5.3 all versions Migrate to a fixed release
FortiADC 5.2 5.2 all versions Migrate to a fixed release

Acknowledgement

Internally discovered and reported by Théo Leleu of Fortinet Product Security team.

Timeline

2023-04-25: Initial publication