Lucene search
K

3 matches found

BDU FSTEC
BDU FSTEC
added 2021/09/10 12:0 a.m.9 views

The vulnerability of the “diagnose system geoip-city” command in the CLI interface of the Fortinet FortiManager device management software, as well as the Fortinet FortiAnalyzer event monitoring and analysis tool, allows a malicious actor to trigger a service failure.

The vulnerability of the “diagnose system geoip-city” command in the CLI Command Line Interface of the Fortinet FortiManager device management software, as well as the Fortinet FortiAnalyzer event monitoring and analysis tool, is related to an operation that occurs outside of the buffer in memory...

4.4CVSS5.7AI score0.00219EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2021/07/20 11:15 a.m.5 views

CVE-2021-24022

A buffer overflow vulnerability in FortiAnalyzer CLI 6.4.5 and below, 6.2.7 and below, 6.0.x and FortiManager CLI 6.4.5 and below, 6.2.7 and below, 6.0.x may allow an authenticated, local attacker to perform a Denial of Service attack by running the diagnose system geoip-city command with a large...

4.4CVSS6.1AI score0.00219EPSS
Exploits0References1
Fortinet
Fortinet
added 2021/07/07 12:0 a.m.39 views

FortiManager and FortiAnalyzer - Buffer overflow vulnerability through the diagnose system geoip-city command

A buffer overflow vulnerability in FortiAnalyzer and FortiManager CLI may allow an authenticated, local attacker to perform a Denial of Service attack by running the diagnose system geoip-city command with a large ip value. Fortinet is not aware of any successful exploitation of this vulnerabilit...

2.1CVSS5.5AI score0.00219EPSS
Exploits0Affected Software2
Rows per page
Query Builder