Fortinet is planning to patch a zero-day command injection vulnerability found in the FortiWeb web application firewall (WAF) at the end of August. Vulnerability is tracked as CVE-2021-22123. Successful exploitation can let authenticated attackers execute arbitrary commands as the root user on the underlying system via the SAML server configuration page.

While attackers must be authenticated to the management interface of the targeted FortiWeb device to abused this bug, they can easily chain it with other vulnerabilities such as the CVE-2020-29015 authentication bypass to take full control of vulnerable servers.

According to the Fortinet advisory, to defend against attacks that would try to exploit this bug until a patch is available, admins are advised to block access to the FortiWeb device's management interface from untrusted networks.

Source: bleepingcomputer.com