CVE-2020-12819 — Heap-based Buffer Overflow in Fortinet Fortios

CWE-122 — Heap-based Buffer Overflow CWE-787 — Out-of-bounds Write4 documents4 sources

Severity

7.5HIGHNVD

CNA5.4

EPSS

1.3%

top 20.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortios

Timeline

PublishedDec 19

Description

A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in FortiGate versions 5.6.12, 6.0.10, 6.2.4 and 6.4.1 and earlier may allow a remote attacker with valid SSL VPN credentials to crash the SSL VPN daemon by sending a large LCP packet, when tunnel mode is enabled. Arbitrary code execution may be theoretically possible, albeit practically very difficult to achieve in this context

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.6 | Impact: 5.9

Affected Packages2 packages

▶NVDfortinet/fortios6.0.0 — 6.0.11+3

▶CVEListV5fortinet/fortios6.4.0 — 6.4.1+3

🔴Vulnerability Details

GHSA

GHSA-8vr7-33jp-gfgw: A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in FortiGate versions 5↗2024-12-19

▶

CVEList

CVE-2020-12819: A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in FortiGate versions 5↗2024-12-19

▶

📋Vendor Advisories

Fortinet

A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in FortiGate versions 5.6...↗2024-12-19

▶