How severe is CVE-2022-33871?

CVE-2022-33871 has a CVSS v3 score of 6.6 (MEDIUM).

CVE-2022-33871

Name: fortiweb
Author: fortinet

6.6MEDIUM

A stack-based buffer overflow vulnerability [CWE-121] in FortiWeb version 7.0.1 and earlier, 6.4 all versions, version 6.3.19 and earlier may allow a privileged attacker to execute arbitrary code or c

Publicado: 2/16/2023Atualizado: 11/21/2024

Descrição

A stack-based buffer overflow vulnerability [CWE-121] in FortiWeb version 7.0.1 and earlier, 6.4 all versions, version 6.3.19 and earlier may allow a privileged attacker to execute arbitrary code or commands via specifically crafted CLI `execute backup-local rename` and `execute backup-local show` operations.

Análise IADesenvolvido por IA

Produtos Afetados

fortinetfortiweb

6.4.0

fortinetfortiweb

6.4.1

fortinetfortiweb

6.4.2

fortinetfortiweb

7.0.0

fortinetfortiweb

7.0.1

Referências

https://fortiguard.com/psirt/FG-IR-22-164
PatchVendor Advisory
https://fortiguard.com/psirt/FG-IR-22-164
PatchVendor Advisory