Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A buffer overflow vulnerability exists that could be exploited by an authenticated attacker to execute arbitrary code or commands via specially crafted HTTP requests.
CPE | Name | Operator | Version |
---|---|---|---|
Fortinet FortiWeb | eq | 6.4.0 | |
Fortinet FortiWeb | eq | 6.4.1 | |
Fortinet FortiWeb >=6.3.0, | le | 6.3.15 |