VYPR
Unrated severityNVD Advisory· Published Feb 16, 2023· Updated Oct 23, 2024

CVE-2022-33871

CVE-2022-33871

Description

A stack-based buffer overflow vulnerability [CWE-121] in FortiWeb version 7.0.1 and earlier, 6.4 all versions, version 6.3.19 and earlier may allow a privileged attacker to execute arbitrary code or commands via specifically crafted CLI execute backup-local rename and execute backup-local show operations.

Affected products

2
  • Fortinet/Fortiwebllm-fuzzy2 versions
    <=7.0.1, <=6.3.19, all 6.4.x+ 1 more
    • (no CPE)range: <=7.0.1, <=6.3.19, all 6.4.x
    • (no CPE)range: 7.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.