Insufficient verification of uploaded files allows attackers with webui administrators privileges to perform arbitrary code execution by uploading a new webui theme.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Connect | Fortinet | 14.2 (including) | 14.2 (including) |
| Connect | Fortinet | 14.10 (including) | 14.10 (including) |
| Connect | Fortinet | 15.10 (including) | 15.10 (including) |
| Connect | Fortinet | 16.7 (including) | 16.7 (including) |