4 matches found
CVE-2021-43071
A heap-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to the LogReport API controller...
Fortinet FortiWeb Heap-based buffer overflow in API v1.0 controller (FG-IR-21-188)
The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-21-188 advisory. - A heap-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below...
CVE-2021-43071
Fortinet FortiWeb contains a heap-based buffer overflow (CWE-122) in the LogReport/API controllers that can be exploited by an authenticated attacker through crafted HTTP requests. Affected versions include FortiWeb 6.4.1/6.4.0, 6.3.15 and earlier, and 6.2.6 and earlier. The issue is described in...
CVE-2021-43071
A heap-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to the LogReport API controller...