CVE-2021-26109 — Integer Overflow or Wraparound in Fortinet Fortios

CWE-190 — Integer Overflow or Wraparound4 documents4 sources

Severity

9.8CRITICALNVD

CNA8.1

EPSS

1.3%

top 20.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Fortinet Fortios Fortinet Fortios

Timeline

PublishedDec 8

Latest updateDec 9

Description

An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7.0.1 may allow an unauthenticated attacker to corrupt control data on the heap via specifically crafted requests to SSLVPN, resulting in potentially arbitrary code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDfortinet/fortios6.0.0 — 6.0.12+3

▶CVEListV5fortinet/fortinet_fortiosFortiOS before 7.0.1

Patches

Patch: fortiguard.com ↗Patch: fortiguard.com ↗

🔴Vulnerability Details

GHSA

GHSA-9h5m-38gw-j896: An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7↗2021-12-09

▶

CVEList

CVE-2021-26109: An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7↗2021-12-08

▶

📋Vendor Advisories

Fortinet

An integer overflow or wraparound vulnerability in the memory allocator of SSLVPN in FortiOS before 7.0.1 may allow an u...↗2021-12-08

▶