Vulnerabilites related to fortinet - fortigate_3600e
Vulnerability from fkie_nvd
Published
2021-12-08 19:15
Modified
2024-11-21 06:13
Severity ?
8.0 (High) - CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Summary
A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, and 6.0.0 through 6.0.13 may allow an attacker to execute arbitrary code via specially crafted installation images.
References
psirt@fortinet.comhttps://fortiguard.com/advisory/FG-IR-21-115Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://fortiguard.com/advisory/FG-IR-21-115Patch, Vendor Advisory
Impacted products
Vendor Product Version
fortinet fortios *
fortinet fortios *
fortinet fortios *
fortinet fortios 7.0.0
fortinet fortios 7.0.1
fortinet fortigate-1100e -
fortinet fortigate-200f -
fortinet fortigate-2600f -
fortinet fortigate-3500f -
fortinet fortigate-400e -
fortinet fortigate-600e -
fortinet fortigate_1800f -
fortinet fortigate_2200e -
fortinet fortigate_3300e -
fortinet fortigate_3600e -
fortinet fortigate_40f -
fortinet fortigate_60f -
fortinet fortigate_7121f -


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A6EF01D9-50FB-4300-87FB-132649A9AC51",
              "versionEndIncluding": "6.0.13",
              "versionStartIncluding": "6.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4C0308D-8E52-456B-BFC2-62D4C1E9BDC3",
              "versionEndIncluding": "6.2.9",
              "versionStartIncluding": "6.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "88D6903E-70D0-4D63-BC68-BA37EE91BCB1",
              "versionEndIncluding": "6.4.6",
              "versionStartIncluding": "6.4.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "79FEE7F6-F72E-4A43-883C-0CF492DF355B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:7.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FBDFDF02-2136-4DE0-A19B-FE3654ED90A4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate-1100e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "58F428EE-70C1-440F-B16D-45D44A54FB9D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate-200f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A07781B7-E990-4BF2-A828-441D556FF2DC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate-2600f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4039DD9E-DAB4-45A4-90A7-50D345038CB9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate-3500f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A1FD4947-6A13-4C8D-B22C-96D96ACB2363",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate-400e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB3F963E-1CFE-4C7C-B44B-AF100592002E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate-600e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F034C1C3-E8D1-4426-BC5E-A6D25E31B497",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_1800f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "76792D6F-B647-43A8-8A60-17BE35824BF7",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_2200e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B2A9D43-348B-45DB-94F7-825B29141F09",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3300e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0CCCA9CD-2B75-46AF-989C-C300CB53358E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3600e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5015D2E8-8482-467A-96F4-65CBF0AFAC6E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_40f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "96C31DB1-CEBD-4796-9CF1-5D9D000A5A9A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_60f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D32F0C5-2949-48B6-B9DD-F070DE11C803",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_7121f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E1663D59-D804-44A4-B768-93BDF60F8DEA",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, and 6.0.0 through 6.0.13 may allow an attacker to execute arbitrary code via specially crafted installation images."
    },
    {
      "lang": "es",
      "value": "Un desbordamiento de b\u00fafer en la regi\u00f3n heap de la memoria en la funci\u00f3n firmware signature verification de FortiOS versiones 7.0.1, 7.0.0, 6.4.0 hasta 6.4.6, 6.2.0 hasta 6.2.9 y 6.0.0 hasta 6.0.13, puede permitir a un atacante ejecutar c\u00f3digo arbitrario por medio de im\u00e1genes de instalaci\u00f3n especialmente dise\u00f1adas"
    }
  ],
  "id": "CVE-2021-36173",
  "lastModified": "2024-11-21T06:13:15.267",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.0,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.1,
        "impactScore": 5.9,
        "source": "psirt@fortinet.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2021-12-08T19:15:09.787",
  "references": [
    {
      "source": "psirt@fortinet.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://fortiguard.com/advisory/FG-IR-21-115"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://fortiguard.com/advisory/FG-IR-21-115"
    }
  ],
  "sourceIdentifier": "psirt@fortinet.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Vulnerability from fkie_nvd
Published
2020-09-24 15:15
Modified
2024-11-21 05:00
Severity ?
5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Summary
An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed.
References
psirt@fortinet.comhttps://fortiguard.com/advisory/FG-IR-20-033Vendor Advisory
nvd@nist.govhttps://www.fortiguard.com/psirt/FG-IR-20-033Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://fortiguard.com/advisory/FG-IR-20-033Vendor Advisory
Impacted products
Vendor Product Version
fortinet fortios *
fortinet fortigate_1000d -
fortinet fortigate_100e -
fortinet fortigate_100f -
fortinet fortigate_1100e -
fortinet fortigate_1500d -
fortinet fortigate_1800f -
fortinet fortigate_2000e -
fortinet fortigate_200e -
fortinet fortigate_2200e -
fortinet fortigate_3000d -
fortinet fortigate_3300e -
fortinet fortigate_3400e -
fortinet fortigate_3600e -
fortinet fortigate_3700d -
fortinet fortigate_3960e -
fortinet fortigate_3980e -
fortinet fortigate_400e -
fortinet fortigate_40f -
fortinet fortigate_4200f -
fortinet fortigate_5001d -
fortinet fortigate_5001e -
fortinet fortigate_5001e1 -
fortinet fortigate_5053b -
fortinet fortigate_5060 -
fortinet fortigate_50e -
fortinet fortigate_5144c -
fortinet fortigate_600e -
fortinet fortigate_60e -
fortinet fortigate_60f -
fortinet fortigate_6300f -
fortinet fortigate_6500f -
fortinet fortigate_7040e -
fortinet fortigate_7060e -
fortinet fortigate_80e -
fortinet fortigate_80f -


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "366223BF-F61D-4AC7-A884-D6FB48CD47A7",
              "versionEndExcluding": "6.4.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_1000d:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "64F7589C-F20B-4222-B859-78D15C457CE5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_100e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5E4BAC86-6E1C-4ECE-8E41-789A6A617A40",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_100f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "561D84F5-E3D4-4293-AC13-26D2E217D970",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_1100e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "648723EC-E144-4975-8D23-A4BB5EF6F07A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_1500d:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D8C8DA5D-9CB6-4BA6-BB8B-F41501726AF9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_1800f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "76792D6F-B647-43A8-8A60-17BE35824BF7",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_2000e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "92C3D2D8-A79C-4D10-B72E-D71EA3EB06F4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_200e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F3D08C3F-51A4-44CF-BB85-A00536FAADAE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_2200e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B2A9D43-348B-45DB-94F7-825B29141F09",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3000d:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C79E67E1-8A10-4AD3-A6F5-9E82890216B3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3300e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0CCCA9CD-2B75-46AF-989C-C300CB53358E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3400e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD1CDB68-B412-45E2-9AC4-F2A6E5300AA4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3600e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5015D2E8-8482-467A-96F4-65CBF0AFAC6E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3700d:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "431E4C52-4BBF-48BA-867B-32D1405A5863",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3960e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3E816AC-57B5-4460-AF88-300EB72B5A8A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_3980e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BF54E933-526F-4E65-A6B1-455389525F27",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_400e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A197765B-E9B4-4E5A-918D-C0C4B679CBA6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_40f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "96C31DB1-CEBD-4796-9CF1-5D9D000A5A9A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_4200f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "326DF840-7BEE-44D3-A8B8-DCE1A673A2C2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_5001d:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B35A82B1-ABA8-493D-9E89-E253CDD10472",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_5001e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "922E4449-EB12-444E-9E8C-C67FA537F1BD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_5001e1:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "302638DB-0FA0-4804-9FC8-CCD20430B08F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_5053b:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5B0C1E0-CA41-4A31-A42D-FB25090EC6CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_5060:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A78FF2E-986E-439E-A787-0A14E7EE78CC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_50e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AB3BE8B3-F83D-4C89-AA5C-9B6819128138",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_5144c:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "20B656F3-C696-48A9-9E1C-6F628E246F48",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_600e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "360F94B1-BFBC-455A-84D4-2E5F90DC0E61",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_60e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "33F4AB8A-21B9-4969-92B3-250BF7414175",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_60f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D32F0C5-2949-48B6-B9DD-F070DE11C803",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_6300f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8C87112F-4971-4A57-98E6-8057A758F7E7",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_6500f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4EA7B3B0-C101-406D-AAF4-C7CF86075EA6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_7040e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "68E575C9-D2C9-476B-91BB-D49C6FB62351",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_7060e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1786CFE3-300C-4891-A55F-06BB0D0B67D7",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_80e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "68866893-6942-4FF6-88E8-4BEB610AD6FE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:fortinet:fortigate_80f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "906455AD-D91C-47D6-A244-33B43ECB0A74",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad de registro insuficiente en FortiGate versiones anteriores a 6.4.1, puede permitir que el tr\u00e1fico de un atacante no autenticado hacia direcciones IP propiedad de Fortinet pase desapercibido."
    }
  ],
  "id": "CVE-2020-12818",
  "lastModified": "2024-11-21T05:00:20.173",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-09-24T15:15:13.237",
  "references": [
    {
      "source": "psirt@fortinet.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://fortiguard.com/advisory/FG-IR-20-033"
    },
    {
      "source": "nvd@nist.gov",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.fortiguard.com/psirt/FG-IR-20-033"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://fortiguard.com/advisory/FG-IR-20-033"
    }
  ],
  "sourceIdentifier": "psirt@fortinet.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

cve-2021-36173
Vulnerability from cvelistv5
Published
2021-12-08 18:42
Modified
2024-10-25 13:38
Severity ?
8.0 (High) - CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:W/RC:C
Summary
A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, and 6.0.0 through 6.0.13 may allow an attacker to execute arbitrary code via specially crafted installation images.
References
https://fortiguard.com/advisory/FG-IR-21-115x_refsource_CONFIRM
Impacted products
Vendor Product Version
Fortinet Fortinet FortiOS Version: FortiOS 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, 6.0.0 through 6.0.13
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T00:47:43.827Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://fortiguard.com/advisory/FG-IR-21-115"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-36173",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-23T14:13:07.677380Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-25T13:38:38.298Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Fortinet FortiOS",
          "vendor": "Fortinet",
          "versions": [
            {
              "status": "affected",
              "version": "FortiOS 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, 6.0.0 through 6.0.13"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, and 6.0.0 through 6.0.13 may allow an attacker to execute arbitrary code via specially crafted installation images."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitCodeMaturity": "PROOF_OF_CONCEPT",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "remediationLevel": "WORKAROUND",
            "reportConfidence": "CONFIRMED",
            "scope": "UNCHANGED",
            "temporalScore": 7.3,
            "temporalSeverity": "HIGH",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:W/RC:C",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Execute unauthorized code or commands",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-12-08T18:42:56",
        "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "shortName": "fortinet"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://fortiguard.com/advisory/FG-IR-21-115"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@fortinet.com",
          "ID": "CVE-2021-36173",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Fortinet FortiOS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "FortiOS 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, 6.0.0 through 6.0.13"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Fortinet"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, and 6.0.0 through 6.0.13 may allow an attacker to execute arbitrary code via specially crafted installation images."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "Low",
            "attackVector": "Adjacent",
            "availabilityImpact": "High",
            "baseScore": 7.3,
            "baseSeverity": "High",
            "confidentialityImpact": "High",
            "integrityImpact": "High",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "userInteraction": "Required",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:W/RC:C",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Execute unauthorized code or commands"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://fortiguard.com/advisory/FG-IR-21-115",
              "refsource": "CONFIRM",
              "url": "https://fortiguard.com/advisory/FG-IR-21-115"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
    "assignerShortName": "fortinet",
    "cveId": "CVE-2021-36173",
    "datePublished": "2021-12-08T18:42:56",
    "dateReserved": "2021-07-06T00:00:00",
    "dateUpdated": "2024-10-25T13:38:38.298Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2020-12818
Vulnerability from cvelistv5
Published
2020-09-24 13:30
Modified
2024-10-25 14:24
Severity ?
Summary
An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed.
References
https://fortiguard.com/advisory/FG-IR-20-033x_refsource_CONFIRM
Impacted products
Vendor Product Version
Fortinet Fortinet FortiOS Version: FortiOS before 6.4.1
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T12:04:22.856Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://fortiguard.com/advisory/FG-IR-20-033"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2020-12818",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-24T20:09:42.429984Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-25T14:24:36.510Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Fortinet FortiOS",
          "vendor": "Fortinet",
          "versions": [
            {
              "status": "affected",
              "version": "FortiOS before 6.4.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Improper Access Control",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-09-24T13:30:18",
        "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "shortName": "fortinet"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://fortiguard.com/advisory/FG-IR-20-033"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@fortinet.com",
          "ID": "CVE-2020-12818",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Fortinet FortiOS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "FortiOS before 6.4.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Fortinet"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "An insufficient logging vulnerability in FortiGate before 6.4.1 may allow the traffic from an unauthenticated attacker to Fortinet owned IP addresses to go unnoticed."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Improper Access Control"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://fortiguard.com/advisory/FG-IR-20-033",
              "refsource": "CONFIRM",
              "url": "https://fortiguard.com/advisory/FG-IR-20-033"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
    "assignerShortName": "fortinet",
    "cveId": "CVE-2020-12818",
    "datePublished": "2020-09-24T13:30:18",
    "dateReserved": "2020-05-12T00:00:00",
    "dateUpdated": "2024-10-25T14:24:36.510Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}