FortiWeb is vulnerable to a buffer overflow

2021-01-0400:00:00

FortiGuard Labs

www.fortiguard.com

0.002 Low

EPSS

Percentile

62.3%

JSON

A stack-based buffer overflow vulnerability in FortiWeb may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header.

CPENameOperatorVersion
fortiwebeq6.3.7
fortiwebeq6.3.6
fortiwebeq6.3.5
fortiwebeq6.3.4
fortiwebeq6.3.3
fortiwebeq6.3.2
fortiwebeq6.3.1
fortiwebeq6.3.0
fortiwebeq6.2.3
fortiwebeq6.2.2

Name	Operator	Version
fortiweb	eq	6.3.7
fortiweb	eq	6.3.6
fortiweb	eq	6.3.5
fortiweb	eq	6.3.4
fortiweb	eq	6.3.3
fortiweb	eq	6.3.2
fortiweb	eq	6.3.1
fortiweb	eq	6.3.0
fortiweb	eq	6.2.3
fortiweb	eq	6.2.2

Rows per page:

1-10 of 121

0.002 Low

EPSS

Percentile

62.3%

JSON

Related for FG-IR-20-126