Privilege escalation in shell Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-24-412 Final 1 1 2025-10-14T00:00:00 Current version 2025-10-14T00:00:00 2025-10-14T00:00:00 An Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability [CWE-78] in FortiSOAR may allow an attacker who has already obtained a non-login low privileged shell access to perform a local privilege escalation via crafted commands. None Escalation of privilege None Internally discovered and reported by Boumediene Kaddour from Fortinet FortiGuard labs team. Fortinet is also pleased to thank Lexfo company for reporting this vulnerability under responsible disclosure. FortiSOAR on-premise 7.6.1 FortiSOAR on-premise 7.6.0 FortiSOAR on-premise 7.5.1 FortiSOAR on-premise 7.5.0 FortiSOAR on-premise 7.4.5 FortiSOAR on-premise 7.4.4 FortiSOAR on-premise 7.4.3 FortiSOAR on-premise 7.4.2 FortiSOAR on-premise 7.4.1 FortiSOAR on-premise 7.4.0 FortiSOAR on-premise 7.3.3 FortiSOAR on-premise 7.3.2 FortiSOAR on-premise 7.3.1 FortiSOAR on-premise 7.3.0 CVE-2024-48891 FortiSOAR on-premise-7.6.1 FortiSOAR on-premise-7.6.0 FortiSOAR on-premise-7.5.1 FortiSOAR on-premise-7.5.0 FortiSOAR on-premise-7.4.5 FortiSOAR on-premise-7.4.4 FortiSOAR on-premise-7.4.3 FortiSOAR on-premise-7.4.2 FortiSOAR on-premise-7.4.1 FortiSOAR on-premise-7.4.0 FortiSOAR on-premise-7.3.3 FortiSOAR on-premise-7.3.2 FortiSOAR on-premise-7.3.1 FortiSOAR on-premise-7.3.0 6.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C https://fortiguard.fortinet.com/psirt/FG-IR-24-412 Privilege escalation in shell Reference>