VYPR
Unrated severityNVD Advisory· Published Dec 9, 2021· Updated Oct 25, 2024

CVE-2021-36194

CVE-2021-36194

Description

Multiple stack-based buffer overflows in the API controllers of FortiWeb 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow an authenticated attacker to achieve arbitrary code execution via specially crafted requests.

Affected products

2
  • Fortinet/Fortiwebllm-fuzzy2 versions
    6.3.0-6.3.15, 6.4.0, 6.4.1+ 1 more
    • (no CPE)range: 6.3.0-6.3.15, 6.4.0, 6.4.1
    • (no CPE)range: FortiWeb 6.4.1, 6.4.0, and 6.3.0 through 6.3.15

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.