CVE-2021-43072

🗓️ 18 Jul 2023 00:01:04Reported by fortinetType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 159 Views

CVE-2021-43072: Buffer overflow in Fortinet FortiAnalyzer, FortiManager, FortiOS, and FortiProx

Reporter	Title	Published	Views	Family All 17
Circl	CVE-2021-43072	11 Jul 202215:38	–	circl
CNNVD	Fortinet FortiManager 缓冲区错误漏洞	5 Jul 202200:00	–	cnnvd
Cvelist	CVE-2021-43072	18 Jul 202300:01	–	cvelist
EUVD	EUVD-2021-30025	3 Oct 202520:07	–	euvd
Fortinet	Protect	5 Jul 202200:00	–	fortinet
Tenable Nessus	Fortinet FortiAnalyzer Buffer Overflow (FG-IR-21-206)	15 Jul 202200:00	–	nessus
Tenable Nessus	Fortinet Fortigate Stack-based buffer overflows via crafted CLI commands (FG-IR-21-206)	26 Oct 202400:00	–	nessus
Tenable Nessus	Fortinet FortiManager Buffer Overflow (FG-IR-21-206)	15 Jul 202200:00	–	nessus
Tenable Nessus	Fortinet FortiOS Buffer Overflow (FG-IR-21-206)	15 Jul 202200:00	–	nessus
NCSC	Vulnerabilities fixed in Fortinet products	6 Jul 202200:00	–	ncsc

NVD

Node

fortinet fortianalyzerRange5.6.0–6.4.8

fortinet fortianalyzerRange7.0.0–7.0.3

fortinet fortimanagerRange5.6.0–6.4.8

fortinet fortimanagerRange7.0.0–7.0.3

fortinet fortiproxyRange1.0.0–2.0.9

fortinet fortiproxyRange7.0.0–7.0.4

fortinet fortiosRange6.0.0–6.2.11

fortinet fortiosRange6.4.0–6.4.9

fortinet fortiosRange7.0.0–7.0.6

[
  {
    "vendor": "Fortinet",
    "product": "FortiAnalyzer",
    "cpes": [
      "cpe:2.3:o:fortinet:fortianalyzer:7.0.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:7.0.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:7.0.0:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.4.7:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.4.6:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.4.5:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.4.4:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.4.3:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.4.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.4.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.4.0:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.12:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.11:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.10:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.9:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.8:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.7:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.6:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.5:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.4:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.3:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.2.0:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.12:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.11:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.10:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.9:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.8:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.7:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.6:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.5:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.4:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.3:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:6.0.0:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.11:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.10:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.9:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.8:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.7:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.6:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.5:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.4:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.3:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortianalyzer:5.6.0:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "versions": [
      {
        "versionType": "semver",
        "version": "7.0.0",
        "lessThanOrEqual": "7.0.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.4.0",
        "lessThanOrEqual": "6.4.7",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.2.0",
        "lessThanOrEqual": "6.2.12",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.0.0",
        "lessThanOrEqual": "6.0.12",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "5.6.0",
        "lessThanOrEqual": "5.6.11",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Fortinet",
    "product": "FortiManager",
    "cpes": [
      "cpe:2.3:o:fortinet:fortimanager:7.0.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:7.0.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:7.0.0:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.4.7:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.4.6:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.4.5:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.4.4:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.4.3:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.4.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.4.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.4.0:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.12:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.11:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.10:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.9:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.8:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.7:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.6:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.5:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.4:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.3:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.2.0:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.12:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.11:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.10:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.9:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.8:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.7:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.6:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.5:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.4:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.3:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:6.0.0:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.11:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.10:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.9:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.8:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.7:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.6:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.5:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.4:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.3:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.2:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.1:*:*:*:*:*:*:*",
      "cpe:2.3:o:fortinet:fortimanager:5.6.0:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "versions": [
      {
        "versionType": "semver",
        "version": "7.0.0",
        "lessThanOrEqual": "7.0.2",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.4.0",
        "lessThanOrEqual": "6.4.7",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.2.0",
        "lessThanOrEqual": "6.2.12",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "6.0.0",
        "lessThanOrEqual": "6.0.12",
        "status": "affected"
      },
      {
        "versionType": "semver",
        "version": "5.6.0",
        "lessThanOrEqual": "5.6.11",
        "status": "affected"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.com/advisory/FG-IR-21-206
fortiguard	www.fortiguard.com/psirt/FG-IR-21-206

21 Nov 2024 06:28Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.16.7

EPSS0.00067

SSVC

CWE-120