A out-of-bounds write vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11 allows attacker to execute unauthorized code or commands via specially crafted packets.
Problem Types
| Type | CWE ID | Description |
|---|
| CWE | CWE-787 | Execute unauthorized code or commands |
Type: CWE
Description: Execute unauthorized code or commands
Metrics
| Version | Base score | Base severity | Vector |
|---|
| 3.1 | 8.3 | HIGH | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C |
Version: 3.1
Base score: 8.3
Base severity: HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C