CVE-2021-41017

December 10, 2021

Multiple heap-based buffer overflow vulnerabilities in some web API controllers of FortiWeb 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow a remote authenticated attacker to execute arbitrary code or commands via specifically crafted HTTP requests.

Summary:

Multiple heap-based buffer overflow vulnerabilities in some web API controllers of FortiWeb 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow a remote authenticated attacker to execute arbitrary code or commands via specifically crafted HTTP requests.

Reference Links(if available):

  • https://fortiguard.com/advisory/FG-IR-21-160

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    ransomhouse 1

    RansomHouse Ransomware Victim: Gantan Beauty Industry

    May 19, 2024
    ransomhouse 1

    RansomHouse Ransomware Victim: ABS-CBN Broadcasting

    May 19, 2024
    CISA Logo

    CISA: CISA Adds One Known Exploited Vulnerability to Catalog

    May 19, 2024
    CISA Logo

    CISA: CISA Releases Four Industrial Control Systems Advisories

    May 19, 2024
    CISA Logo

    CISA: CISA and Partners Release Guidance for Civil Society Organizations on Mitigating Cyber Threats with Limited Resources

    May 19, 2024