| Assigner | fortinet |
| Reserved | 2024-02-14 |
| Published | 2024-06-11 |
| Updated | 2024-06-13 |
Description
A stack-based buffer overflow in Fortinet FortiPAM version 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiWeb, FortiAuthenticator, FortiSwitchManager version 7.2.0 through 7.2.3, 7.0.1 through 7.0.3, FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0.0 through 7.0.14, 6.4.0 through 6.4.15, 6.2.0 through 6.2.16, 6.0.0 through 6.0.18, FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.9, 7.0.0 through 7.0.15, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7 allows attacker to execute unauthorized code or commands via specially crafted packets.
| CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:W/RC:C |
Problem types
Execute unauthorized code or commands
Product status
1.2.0
1.1.0
1.0.0
7.2.0
7.0.1
7.4.0
7.2.0
7.0.0
6.4.0
6.2.0
6.0.0
7.4.0
7.2.0
7.0.0
2.0.0
1.2.0
1.1.0
1.0.0
References
https://fortiguard.fortinet.com/psirt/FG-IR-24-036
