CVE-2019-6695

Name of the Vulnerable Software and Affected Versions FortiManager VM versions 6.2.0, 6.0.6 and below

Description The issue is due to insufficient input validation in the FortiManager VM application. This could allow a remote attacker to execute arbitrary code or commands. Additionally, the lack of root file system integrity checking in FortiManager VM application images may enable an attacker to implant third-party programs by recreating the image through specific methods.

Recommendations For versions 6.2.0 and below, consider restricting access to the application until a fix is available. For version 6.0.6 and below, avoid using the application for critical operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.