Lucene search
China National Vulnerability DatabaseCNVD-2021-101138HistoryDec 09, 2021 - 12:00 a.m.
Fortinet FortiWeb Buffer Overflow Vulnerability (CNVD-2021-101138)
2021-12-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.001 Low
EPSS
Percentile
51.0%
Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A buffer overflow vulnerability exists that could be exploited by an authenticated attacker to execute arbitrary code or commands via specially crafted HTTP requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| Fortinet FortiWeb | eq | 6.4.0 | |
| Fortinet FortiWeb | eq | 6.4.1 | |
| Fortinet FortiWeb >=6.3.0, | le | 6.3.15 |
Related
prion
prion
Heap overflow
2021-12-08 19:15:00
cve
cve
CVE-2021-41017
2021-12-08 19:15:09
nessus
nessus
fortinet
fortinet
FortiWeb - Heap-based buffer overflows in API controller
2021-12-07 00:00:00
cvelist
cvelist
CVE-2021-41017
2021-12-08 18:51:10
nvd
nvd
CVE-2021-41017
2021-12-08 19:15:09