CVE-2022-33871
6.6MEDIUMA stack-based buffer overflow vulnerability [CWE-121] in FortiWeb version 7.0.1 and earlier, 6.4 all versions, version 6.3.19 and earlier may allow a privileged attacker to execute arbitrary code or c
Опубликовано: 2/16/2023Обновлено: 11/21/2024
Описание
A stack-based buffer overflow vulnerability [CWE-121] in FortiWeb version 7.0.1 and earlier, 6.4 all versions, version 6.3.19 and earlier may allow a privileged attacker to execute arbitrary code or commands via specifically crafted CLI `execute backup-local rename` and `execute backup-local show` operations.
ИИ-АнализНа базе ИИ
Затронутые продукты
fortinetfortiweb
fortinetfortiweb
6.4.0
fortinetfortiweb
6.4.1
fortinetfortiweb
6.4.2
fortinetfortiweb
7.0.0
fortinetfortiweb
7.0.1
Ссылки
- https://fortiguard.com/psirt/FG-IR-22-164PatchVendor Advisory
- https://fortiguard.com/psirt/FG-IR-22-164PatchVendor Advisory