exploitDog

GHSA-q8x9-vj32-mh5w

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

A buffer underwrite vulnerability in the firmware verification routine of FortiOS before 7.0.1 may allow an attacker located in the adjacent network to potentially execute arbitrary code via a specifically crafted firmware image.

A buffer underwrite vulnerability in the firmware verification routine of FortiOS before 7.0.1 may allow an attacker located in the adjacent network to potentially execute arbitrary code via a specifically crafted firmware image.

Ссылки

EPSS

Процентиль: 31%

0.0012

Низкий

8.8 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2021-24018

CVSS3: 4.3

nvd

больше 4 лет назад

A buffer underwrite vulnerability in the firmware verification routine of FortiOS before 7.0.1 may allow an attacker located in the adjacent network to potentially execute arbitrary code via a specifically crafted firmware image.

BDU:2022-02333

CVSS3: 8.8

fstec

почти 5 лет назад

Уязвимость процедуры проверки прошивки операционных систем FortiOS. межсетевого экрана веб-приложений FortiWeb, Ethernet-коммутаторов FortiSwitch и прокси-сервера FortiProxy, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 31%

0.0012

Низкий

8.8 High

CVSS3

CVE ID