PT-2024-4087 · Fortinet · Fortios

Name of the Vulnerable Software and Affected Versions: Fortinet FortiOS versions 6.0 through 7.4.2 Description: A stack-based buffer overflow in the command line interpreter of FortiOS allows an attacker to execute unauthorized code or commands via specially crafted command line arguments. This...

The vulnerabilities of the FortiOS command-line interpreter, the FortiSwitchManager local management platform, and the FortiProxy proxy server for protecting against internet attacks allow attackers to execute arbitrary code.

The vulnerability of the FortiOS command-line interpreter, the local management platform FortiSwitchManager, and the FortiProxy proxy server for protecting against internet attacks is related to the use of an uncontrolled format string. Exploiting this vulnerability allows an attacker to execute...

The vulnerability of the command-line interface of FortiOS operating systems and the FortiProxy proxy server, related to the use of uncontrolled format strings, allows attackers to execute arbitrary code.

The vulnerability of the command-line interface of FortiOS operating systems and the FortiProxy proxy server for protecting against Internet attacks is related to the use of uncontrolled format strings. Exploiting this vulnerability allows a attacker to execute arbitrary code using specially...

CVE-2021-32600

An exposure of sensitive information to an unauthorized actor vulnerability in FortiOS CLI 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, 6.0.x and 5.6.x may allow a local and authenticated user assigned to a specific VDOM to retrieve other VDOMs information such as the admin account list and t...