CVE-2021-36173

HIGH

FortiOS 6.0.0-6.0.13, 6.2.0-6.2.9, 6.4.0-6.4.6, 7.0.0-7.0.1 - Remote Code Execution via Crafted Installation Image

Title source: llm
STIX 2.1

Description

A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, and 6.0.0 through 6.0.13 may allow an attacker to execute arbitrary code via specially crafted installation images.

References (1)

Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://fortiguard.com/advisory/FG-IR-21-115

Scores

CVSS v3 8.0
EPSS 0.0067
EPSS Percentile 71.6%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-787
Status published
Products (3)
fortinet/fortios 7.0.0
fortinet/fortios 7.0.1
fortinet/fortios 6.0.0 - 6.0.13
Published Dec 08, 2021
Tracked Since Feb 18, 2026