PT-2022-3652 · Fortinet · Fortimanager +3

Name of the Vulnerable Software and Affected Versions: FortiAnalyzer versions 7.0.2 and below, 6.4.7 and below, 6.2.9 and below, 6.0.11 and below, 5.6.11 and below FortiManager versions 7.0.2 and below, 6.4.7 and below, 6.2.9 and below, 6.0.11 and below, 5.6.11 and below FortiOS versions 7.0.0...

The vulnerability in the implementation of the “execute restore src-vis” command in FortiOS operating systems allows a hacker to write arbitrary files.

The vulnerability in the execution of the “execute restore src-vis” command in FortiOS operating systems lies in the loading of code without checking its integrity. Exploiting this vulnerability allows an attacker to write arbitrary files using specially crafted update packages...

CVE-2021-44168

A download of code without integrity check vulnerability in the "execute restore src-vis" command of FortiOS before 7.0.3 may allow a local authenticated attacker to download arbitrary files on the device via specially crafted update packages...

Fortinet FortiOS has an unspecified vulnerability (CNVD-2022-06912)

Fortinet FortiOS is a security operating system dedicated to the FortiGate network security platform from Fortinet, a US-based company. The system provides users with a variety of security features such as firewall, anti-virus, IPSec/SSLVPN, Web content filtering and anti-spam.Fortinet FortiOS ha...

VulnCheck KEV: CVE-2021-44168

Fortinet FortiOS "execute restore src-vis" downloads code without integrity checking, allowing an attacker to arbitrarily download files...

PT-2021-6889 · Fortinet · Fortios

Name of the Vulnerable Software and Affected Versions: FortiOS versions prior to 7.0.3 Description: A download of code without integrity check vulnerability in the "execute restore src-vis" command may allow a local authenticated attacker to download arbitrary files on the device via specially...