CVE-2021-43072
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C
Summary
A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiAnalyzer version 7.0.2 and below, version 6.4.7 and below, version 6.2.9 and below, version 6.0.11 and below, version 5.6.11 and below, FortiManager version 7.0.2 and below, version 6.4.7 and below, version 6.2.9 and below, version 6.0.11 and below, version 5.6.11 and below, FortiOS version 7.0.0 through 7.0.4, 6.4.0 through 6.4.8, 6.2.0 through 6.2.10, 6.0.x and FortiProxy version 7.0.0 through 7.0.3, 2.0.0 through 2.0.8, 1.2.x, 1.1.x and 1.0.x allows attacker to execute unauthorized code or commands via crafted CLI execute restore image and execute certificate remote operations with the tFTP protocol.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Fortinet | FortiAnalyzer | 7.0.0 <= 7.0.2 | affected |
| Fortinet | FortiAnalyzer | 6.4.0 <= 6.4.7 | affected |
| Fortinet | FortiAnalyzer | 6.2.0 <= 6.2.12 | affected |
| Fortinet | FortiAnalyzer | 6.0.0 <= 6.0.12 | affected |
| Fortinet | FortiAnalyzer | 5.6.0 <= 5.6.11 | affected |
| Fortinet | FortiManager | 7.0.0 <= 7.0.2 | affected |
| Fortinet | FortiManager | 6.4.0 <= 6.4.7 | affected |
| Fortinet | FortiManager | 6.2.0 <= 6.2.12 | affected |
| Fortinet | FortiManager | 6.0.0 <= 6.0.12 | affected |
| Fortinet | FortiManager | 5.6.0 <= 5.6.11 | affected |
Weaknesses
- CWE-120: Execute unauthorized code or commands
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.