VYPR
Unrated severityNVD Advisory· Published Jul 9, 2021· Updated Oct 25, 2024

CVE-2021-22129

CVE-2021-22129

Description

Multiple instances of incorrect calculation of buffer size in the Webmail and Administrative interface of FortiMail before 6.4.5 may allow an authenticated attacker with regular webmail access to trigger a buffer overflow and to possibly execute unauthorized code or commands via specifically crafted HTTP requests.

Affected products

2
  • Fortinet/Fortimailllm-fuzzy2 versions
    <6.4.5+ 1 more
    • (no CPE)range: <6.4.5
    • (no CPE)range: FortiMail before 6.4.5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.