CVE-2020-29016 — Out-of-bounds Write in Fortinet Fortiweb

CWE-787 — Out-of-bounds Write4 documents4 sources

Severity

9.8CRITICALNVD

EPSS

2.2%

top 15.64%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortiweb Fortinet Fortiweb

Timeline

PublishedJan 14

Latest updateMay 24

Description

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.5 and version before 6.2.4 may allow an unauthenticated, remote attacker to overwrite the content of the stack and potentially execute arbitrary code by sending a crafted request with a large certname.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDfortinet/fortiweb6.3.0 — 6.3.5+1

▶CVEListV5fortinet/fortinet_fortiwebFortiWeb 6.3.0 through 6.3.5 and version before 6.2.4

🔴Vulnerability Details

GHSA

GHSA-4chx-4wv3-ph6v: A stack-based buffer overflow vulnerability in FortiWeb 6↗2022-05-24

▶

CVEList

CVE-2020-29016: A stack-based buffer overflow vulnerability in FortiWeb 6↗2021-01-14

▶

📋Vendor Advisories

Fortinet

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.5 and version before 6.2.4 may allow an unauth...↗2021-01-14

▶