2971 matches found
Integer overflow
An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7.0.1 may allow an unauthenticated attacker to corrupt control data on the heap via specifically crafted requests to SSLVPN, resulting in potentially arbitrary code execution...
CVE-2021-26109
An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7.0.1 may allow an unauthenticated attacker to corrupt control data on the heap via specifically crafted requests to SSLVPN, resulting in potentially arbitrary code execution...
CVE-2021-26109
Fortinet FortiOS/ FortiGate SSLVPN memory allocator vulnerability (CVE-2021-26109) is an integer overflow that can corrupt heap control data via crafted SSLVPN requests. Affects FortiOS prior to 7.0.1; exploitation by unauthenticated network attackers could lead to arbitrary code execution with h...
CVE-2021-26109
An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7.0.1 may allow an unauthenticated attacker to corrupt control data on the heap via specifically crafted requests to SSLVPN, resulting in potentially arbitrary code execution...
CVE-2021-26108
A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve the key by reverse engineering...
CVE-2021-26108
A use of hard-coded cryptographic key vulnerability in the SSLVPN of FortiOS before 7.0.1 may allow an attacker to retrieve the key by reverse engineering...
CVE-2021-26108
CVE-2021-26108 is a Fortinet FortiOS SSLVPN hard-coded cryptographic key vulnerability affecting FortiOS before 7.0.1. The underlying issue allows an attacker to retrieve the key by reverse engineering, with high confidentiality impact reported (CVSS v3.1 base score 7.5). Affected component is Fo...
CVE-2021-41024
CVE-2021-41024 describes a relative path traversal in FortiOS 7.0.0 and 7.0.1 and FortiProxy 7.0.0 that may allow an unauthenticated attacker to inject path traversal sequences to disclose sensitive server information via the login page GET request. Affected products and versions are FortiOS (7.0...
CVE-2021-41024
A relative path traversal CWE-23 vulnerabiltiy in FortiOS versions 7.0.0 and 7.0.1 and FortiProxy verison 7.0.0 may allow an unauthenticated, unauthorized attacker to inject path traversal character sequences to disclose sensitive information of the server via the GET request of the login page...
CVE-2021-41024
A relative path traversal CWE-23 vulnerabiltiy in FortiOS versions 7.0.0 and 7.0.1 and FortiProxy verison 7.0.0 may allow an unauthenticated, unauthorized attacker to inject path traversal character sequences to disclose sensitive information of the server via the GET request of the login page...
CVE-2021-26110
An improper access control vulnerability CWE-284 in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 and below and FortiProxy 2.0.1 and below, 1.2.9 and below may allow an authenticated low-privileged attacker to escalate their privileges to superadmin via a specific crafted...
CVE-2021-42757
A buffer overflow CWE-121 in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authenticated local attacker to achieve arbitrary code execution via specially crafted command line arguments...
CVE-2021-26110
An improper access control vulnerability CWE-284 in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 and below and FortiProxy 2.0.1 and below, 1.2.9 and below may allow an authenticated low-privileged attacker to escalate their privileges to superadmin via a specific crafted...
CVE-2021-42757
A buffer overflow CWE-121 in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authenticated local attacker to achieve arbitrary code execution via specially crafted command line arguments...
Improper access control
An improper access control vulnerability CWE-284 in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 and below and FortiProxy 2.0.1 and below, 1.2.9 and below may allow an authenticated low-privileged attacker to escalate their privileges to superadmin via a specific crafted...
Buffer overflow
A buffer overflow CWE-121 in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authenticated local attacker to achieve arbitrary code execution via specially crafted command line arguments...
CVE-2021-42757
A buffer overflow CWE-121 in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authenticated local attacker to achieve arbitrary code execution via specially crafted command line arguments...
CVE-2021-42757
FortiOS contains a buffer overflow (CWE-121) in the TFTP client library. CVE-2021-42757 affects FortiOS versions prior to 6.4.7 and 7.0.0–7.0.2, enabling a locally authenticated attacker to execute arbitrary code via crafted CLI arguments. The vulnerability is documented in Fortinet’s FG-IR-21-17...
CVE-2021-26110
CVE-2021-26110 describes an improper access control (CWE-284) in FortiOS autod daemon and FortiProxy that could allow an authenticated, low-privileged attacker to escalate to super_admin via crafted fabric automation CLI/script configurations. Affected products include FortiOS autod daemon versio...
CVE-2021-26110
An improper access control vulnerability CWE-284 in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 and below and FortiProxy 2.0.1 and below, 1.2.9 and below may allow an authenticated low-privileged attacker to escalate their privileges to superadmin via a specific crafted...