CVE-2020-29018Use of Externally-Controlled Format String in Fortinet Fortiweb

CWE-134Use of Externally-Controlled Format String4 documents4 sources
Severity
8.8HIGHNVD
EPSS
0.8%
top 26.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Fortinet FortiwebFortinet Fortiweb
Timeline
PublishedJan 14
Latest updateMay 24

Description

A format string vulnerability in FortiWeb 6.3.0 through 6.3.5 may allow an authenticated, remote attacker to read the content of memory and retrieve sensitive data via the redir parameter.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

NVDfortinet/fortiweb6.3.06.3.5
CVEListV5fortinet/fortinet_fortiwebFortiWeb 6.3.0 through 6.3.5

🔴Vulnerability Details

2
GHSA
GHSA-53jq-rch4-w6wr: A format string vulnerability in FortiWeb 62022-05-24
CVEList
CVE-2020-29018: A format string vulnerability in FortiWeb 62021-01-14

📋Vendor Advisories

1
Fortinet
A format string vulnerability in FortiWeb 6.3.0 through 6.3.5 may allow an authenticated, remote attacker to read the co...2021-01-14
CVE-2020-29018 — Fortinet Fortiweb vulnerability | cvebase