Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:48 p.m.5 views

CVE-2021-43071

A heap-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to the LogReport API controller...

8.8CVSS7.9AI score0.0122EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/10/26 12:0 a.m.6 views

Fortinet FortiWeb Heap-based buffer overflow in API v1.0 controller (FG-IR-21-188)

The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-188 advisory. - A heap-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below...

8.8CVSS8.5AI score0.0122EPSS
Exploits0References2
CVE
CVE
added 2021/12/09 9:18 a.m.53 views

CVE-2021-43071

Fortinet FortiWeb contains a heap-based buffer overflow (CWE-122) in the LogReport/API controllers that can be exploited by an authenticated attacker through crafted HTTP requests. Affected versions include FortiWeb 6.4.1/6.4.0, 6.3.15 and earlier, and 6.2.6 and earlier. The issue is described in...

8.8CVSS9AI score0.0122EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/12/09 9:18 a.m.21 views

CVE-2021-43071

A heap-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to the LogReport API controller...

8.8CVSS9.2AI score0.0122EPSS
Exploits0References1
Rows per page
Query Builder