Primary

Context

Fortinet FortiSOAR Path Traversal Vulnerability in File Content Extraction Connector

Vulnerability

Patched

A path traversal vulnerability has been identified in Fortinet FortiSOAR PaaS and on-premise versions 7.3, 7.4, 7.5, and 7.6. This vulnerability allows authenticated remote attackers to exploit path traversal via File Content Extraction actions, potentially leading to unauthorized access to restricted directories.

Impact

Exploitation of this vulnerability could result in unauthorized information disclosure by allowing attackers to access files outside of the intended directory restrictions.

Remediation

Users are advised to upgrade to FortiSOAR File Content Extraction Connector Version 1.3.1 or above.

Added: Apr 14, 2026, 5:36 PM

Updated: Apr 14, 2026, 5:36 PM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

0.6

exploitability

4.9

remediation

7.7

relevance

5.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

0.6

exploitability

4.9

remediation

7.7

relevance

5.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fortinet FortiSOAR Path Traversal Vulnerability in File Content Extraction Connector

Vulnerability

Impact

Remediation

Affected Products

Fortinet FortiSOAR

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating