VYPR
Unrated severityNVD Advisory· Published Nov 14, 2023· Updated Aug 30, 2024

CVE-2023-29177

CVE-2023-29177

Description

Multiple buffer copy without checking size of input ('classic buffer overflow') vulnerabilities [CWE-120] in FortiADC version 7.2.0 and before 7.1.2 & FortiDDoS-F version 6.5.0 and before 6.4.1 allows a privileged attacker to execute arbitrary code or commands via specifically crafted CLI requests.

Affected products

4
  • Fortinet/Fortiddos Fllm-fuzzy2 versions
    <=6.5.0, <6.4.1+ 1 more
    • (no CPE)range: <=6.5.0, <6.4.1
    • (no CPE)range: 6.5.0
  • Fortinet/Fortiadc 200dllm-fuzzy2 versions
    <=7.2.0, <7.1.2+ 1 more
    • (no CPE)range: <=7.2.0, <7.1.2
    • (no CPE)range: 7.2.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.