FortiWLC-SD Privilege escalation vulnerability (root access) using copy running-config

FortiWLC-SD Privilege escalation vulnerability (root access) using copy running-config Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-17-097 Final 1 1 2017-04-12T00:00:00 Current version 2017-04-12T00:00:00 2017-04-12T00:00:00 The lack of input sanitisation for CLI command 'copy running-config' allows a user with 'admin' or 'superuser' privilege level to gain shell on the FortiWLC-SD with root privilege. Escalation of privilege FortiWLC-SD versions 8.2.4 and below Upgrade to FortiWLC-SD version 8.3.0 Fortinet is pleased to thank Tom Scholten of SolidBE for reporting this vulnerability under responsible disclosure. FortiWLC-SD Privilege escalation vulnerability (root access) using copy running-config CVE-2017-3134 0 https://fortiguard.fortinet.com/psirt/FG-IR-17-097 FortiWLC-SD Privilege escalation vulnerability (root access) using copy running-config Reference>