CVE-2021-36193

Description

Multiple stack-based buffer overflows in the command line interpreter of FortiWeb before 6.4.2 may allow an authenticated attacker to achieve arbitrary code execution via specially crafted commands.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Physical

Unchanged

Changed

Affected products

fortinet / fortiadc5.4.2 – 5.4.2
fortinet / fortiadc6.1.3 – 6.1.3
fortinet / fortiadc5.3.4 – 5.3.4
fortinet / fortiadc5.3.3 – 5.3.3
fortinet / fortiadc5.3.2 – 5.3.2
fortinet / fortiadc5.3.1 – 5.3.1
fortinet / fortiadc5.3.0 – 5.3.0
fortinet / fortiadc5.2.8 – 5.2.8
fortinet / fortiadc5.2.7 – 5.2.7
fortinet / fortiadc5.2.6 – 5.2.6
fortinet / fortiadc5.2.5 – 5.2.5
fortinet / fortiadc5.2.4 – 5.2.4
fortinet / fortiadc5.2.3 – 5.2.3
fortinet / fortiadc5.2.2 – 5.2.2
fortinet / fortiadc5.2.1 – 5.2.1
fortinet / fortiadc5.2.0 – 5.2.0
fortinet / fortiadc5.1.7 – 5.1.7
fortinet / fortiadc5.1.6 – 5.1.6
fortinet / fortiadc5.1.5 – 5.1.5
fortinet / fortiadc5.1.4 – 5.1.4
fortinet / fortiadc5.1.3 – 5.1.3
fortinet / fortiadc5.1.2 – 5.1.2
fortinet / fortiadc5.1.1 – 5.1.1
fortinet / fortiadc5.1.0 – 5.1.0
fortinet / fortiadc5.0.4 – 5.0.4
fortinet / fortiadc5.0.3 – 5.0.3
fortinet / fortiadc5.0.2 – 5.0.2
fortinet / fortiadc5.0.1 – 5.0.1
fortinet / fortiadc5.0.0 – 5.0.0
fortinet / fortiadc6.1.4 – 6.1.4
fortinet / fortiadc7.0.0 – 7.0.0
fortinet / fortiadc6.2.2 – 6.2.2
fortinet / fortiadc6.2.1 – 6.2.1
fortinet / fortiadc6.2.0 – 6.2.0
fortinet / fortiadc6.1.6 – 6.1.6
fortinet / fortiadc6.1.5 – 6.1.5
fortinet / fortiadc6.1.2 – 6.1.2
fortinet / fortiadc6.1.1 – 6.1.1
fortinet / fortiadc6.1.0 – 6.1.0
fortinet / fortiadc6.0.4 – 6.0.4
fortinet / fortiadc6.0.3 – 6.0.3
fortinet / fortiadc6.0.2 – 6.0.2
fortinet / fortiadc6.0.1 – 6.0.1
fortinet / fortiadc6.0.0 – 6.0.0
fortinet / fortiadc5.4.5 – 5.4.5
fortinet / fortiadc5.4.4 – 5.4.4
fortinet / fortiadc5.4.3 – 5.4.3
fortinet / fortiadc5.4.1 – 5.4.1
fortinet / fortiadc5.4.0 – 5.4.0
fortinet / fortiadc5.3.7 – 5.3.7
fortinet / fortiadc5.3.6 – 5.3.6
fortinet / fortiadc5.3.5 – 5.3.5
fortinet / FortiDDoS5.4.3 – 5.4.3
fortinet / FortiDDoS5.5.0 – 5.5.0
fortinet / FortiDDoS5.5.1 – 5.5.1
fortinet / FortiDDoS5.6.0 – 5.6.0
fortinet / FortiDDoS5.6.1 – 5.6.1
fortinet / FortiDDoS4.4.0 – 4.4.0
fortinet / FortiDDoS4.4.1 – 4.4.1
fortinet / FortiDDoS4.4.2 – 4.4.2
fortinet / FortiDDoS4.5.0 – 4.5.0
fortinet / FortiDDoS4.6.0 – 4.6.0
fortinet / FortiDDoS4.7.0 – 4.7.0
fortinet / FortiDDoS5.0.0 – 5.0.0
fortinet / FortiDDoS5.1.0 – 5.1.0
fortinet / FortiDDoS5.2.0 – 5.2.0
fortinet / FortiDDoS5.3.0 – 5.3.0
fortinet / FortiDDoS5.3.1 – 5.3.1
fortinet / FortiDDoS5.3.2 – 5.3.2
fortinet / FortiDDoS5.4.0 – 5.4.0
fortinet / FortiDDoS5.7.0 – 5.7.0
fortinet / FortiDDoS5.4.1 – 5.4.1
fortinet / FortiDDoS5.4.2 – 5.4.2
fortinet / FortiDDoS-CM5.2.0 – 5.2.0
fortinet / FortiDDoS-CM5.3.0 – 5.3.1
fortinet / FortiDDoS-CM5.4.0 – 5.4.3
fortinet / FortiDDoS-CM5.5.0 – 5.5.1
fortinet / FortiDDoS-CM5.0.0 – 5.0.0
fortinet / FortiDDoS-CM5.1.0 – 5.1.0
fortinet / FortiDDoS-CM4.7.0 – 4.7.0
fortinet / fortiddos-f6.1.0 – 6.1.0
fortinet / fortiddos-f6.3.0 – 6.3.0
fortinet / fortiddos-f6.2.2 – 6.2.2
fortinet / fortiddos-f6.2.1 – 6.2.1
fortinet / fortiddos-f6.2.0 – 6.2.0
fortinet / fortiddos-f6.1.4 – 6.1.4
fortinet / fortiddos-f6.1.3 – 6.1.3
fortinet / fortiddos-f6.1.2 – 6.1.2
fortinet / fortiddos-f6.1.1 – 6.1.1
fortinet / FortiFone3.0.0 – 3.0.11
fortinet / fortimail5.4.7 – 5.4.7
fortinet / fortimail5.4.6 – 5.4.6
fortinet / fortimail5.4.5 – 5.4.5
fortinet / fortimail5.4.4 – 5.4.4
fortinet / fortimail5.4.3 – 5.4.3
fortinet / fortimail5.4.2 – 5.4.2
fortinet / fortimail5.4.1 – 5.4.1
fortinet / fortimail5.4.0 – 5.4.0
fortinet / fortimail6.0.4 – 6.0.4
fortinet / fortimail6.0.5 – 6.0.5
fortinet / fortimail6.0.6 – 6.0.6
fortinet / fortimail6.0.7 – 6.0.7
fortinet / fortimail6.0.8 – 6.0.8
fortinet / fortimail6.0.9 – 6.0.9
fortinet / fortimail6.0.10 – 6.0.10
fortinet / fortimail6.0.11 – 6.0.11
fortinet / fortimail6.0.12 – 6.0.12
fortinet / fortimail6.2.0 – 6.2.0
fortinet / fortimail6.2.1 – 6.2.1
fortinet / fortimail6.2.2 – 6.2.2
fortinet / fortimail6.2.3 – 6.2.3
fortinet / fortimail6.2.4 – 6.2.4
fortinet / fortimail6.2.5 – 6.2.5
fortinet / fortimail6.2.6 – 6.2.6
fortinet / fortimail6.2.7 – 6.2.7
fortinet / fortimail6.2.8 – 6.2.8
fortinet / fortimail6.4.0 – 6.4.0
fortinet / fortimail6.4.1 – 6.4.1
fortinet / fortimail6.4.2 – 6.4.2
fortinet / fortimail6.4.5 – 6.4.5
fortinet / fortimail6.0.1 – 6.0.1
fortinet / fortimail6.0.2 – 6.0.2
fortinet / fortimail6.0.3 – 6.0.3
fortinet / fortimail5.4.8 – 5.4.8
fortinet / fortimail7.0.2 – 7.0.2
fortinet / fortimail7.0.1 – 7.0.1
fortinet / fortimail7.0.0 – 7.0.0
fortinet / fortimail6.4.6 – 6.4.6
fortinet / fortimail6.4.4 – 6.4.4
fortinet / fortimail6.4.3 – 6.4.3
fortinet / fortimail5.4.9 – 5.4.9
fortinet / fortimail5.4.10 – 5.4.10
fortinet / fortimail5.4.11 – 5.4.11
fortinet / fortimail5.4.12 – 5.4.12
fortinet / fortimail6.0.0 – 6.0.0
fortinet / fortindr1.5.1 – 1.5.1
fortinet / fortindr1.5.0 – 1.5.0
fortinet / fortindr1.4.0 – 1.4.0
fortinet / fortindr1.3.1 – 1.3.1
fortinet / fortindr1.3.0 – 1.3.0
fortinet / fortindr1.2.0 – 1.2.0
fortinet / fortindr1.1.0 – 1.1.0
fortinet / fortindr1.5.2 – 1.5.2
fortinet / fortindr1.5.3 – 1.5.3
fortinet / fortirecorder2.7.1 – 2.7.1
fortinet / fortirecorder6.4.2 – 6.4.2
fortinet / fortirecorder6.4.1 – 6.4.1
fortinet / fortirecorder6.4.0 – 6.4.0
fortinet / fortirecorder6.0.10 – 6.0.10
fortinet / fortirecorder6.0.9 – 6.0.9
fortinet / fortirecorder6.0.8 – 6.0.8
fortinet / fortirecorder6.0.7 – 6.0.7
fortinet / fortirecorder6.0.6 – 6.0.6
fortinet / fortirecorder6.0.5 – 6.0.5
fortinet / fortirecorder6.0.4 – 6.0.4
fortinet / fortirecorder6.0.3 – 6.0.3
fortinet / fortirecorder6.0.2 – 6.0.2
fortinet / fortirecorder6.0.1 – 6.0.1
fortinet / fortirecorder6.0.0 – 6.0.0
fortinet / fortirecorder2.7.7 – 2.7.7
fortinet / fortirecorder2.7.6 – 2.7.6
fortinet / fortirecorder2.7.5 – 2.7.5
fortinet / fortirecorder2.7.4 – 2.7.4
fortinet / fortirecorder2.7.3 – 2.7.3
fortinet / fortirecorder2.7.2 – 2.7.2
fortinet / fortirecorder2.7.0 – 2.7.0
fortinet / fortirecorder2.6.3 – 2.6.3
fortinet / fortirecorder2.6.2 – 2.6.2
fortinet / fortirecorder2.6.1 – 2.6.1
fortinet / fortirecorder2.6.0 – 2.6.0
fortinet / fortivoice6.4.0 – 6.4.0
fortinet / fortivoice6.4.1 – 6.4.1
fortinet / fortivoice6.4.2 – 6.4.2
fortinet / fortivoice6.4.3 – 6.4.3
fortinet / fortivoice6.4.4 – 6.4.4
fortinet / fortivoice6.0.7 – 6.0.7
fortinet / fortivoice6.0.8 – 6.0.8
fortinet / fortivoice6.0.9 – 6.0.9
fortinet / fortivoice6.0.10 – 6.0.10
fortinet / fortivoice6.0.0 – 6.0.0
fortinet / fortivoice6.0.1 – 6.0.1
fortinet / fortivoice6.0.2 – 6.0.2
fortinet / fortivoice6.0.3 – 6.0.3
fortinet / fortivoice6.0.4 – 6.0.4
fortinet / fortivoice6.0.5 – 6.0.5
fortinet / fortivoice6.0.6 – 6.0.6
fortinet / fortiweb6.4.0 – 6.4.0
fortinet / fortiweb6.3.15 – 6.3.15
fortinet / fortiweb6.3.14 – 6.3.14
fortinet / fortiweb6.3.13 – 6.3.13
fortinet / fortiweb6.3.12 – 6.3.12
fortinet / fortiweb6.3.11 – 6.3.11
fortinet / fortiweb6.3.10 – 6.3.10
fortinet / fortiweb6.3.9 – 6.3.9
fortinet / fortiweb6.3.8 – 6.3.8
fortinet / fortiweb6.3.7 – 6.3.7
fortinet / fortiweb6.3.6 – 6.3.6
fortinet / fortiweb6.3.5 – 6.3.5
fortinet / fortiweb6.3.4 – 6.3.4
fortinet / fortiweb6.3.3 – 6.3.3
fortinet / fortiweb6.3.2 – 6.3.2
fortinet / fortiweb6.3.1 – 6.3.1
fortinet / fortiweb6.3.0 – 6.3.0
fortinet / fortiweb6.4.1 – 6.4.1

References

MISChttps://fortiguard.com/advisory/FG-IR-21-132