CVE-2021-41025
HIGHFortiWeb 6.0.0-6.0.7, 6.1.0-6.1.2, 6.2.0-6.2.6, 6.3.0-6.3.15, 6.4.0-6.4.1 - Authentication Bypass via Capture-Replay
Title source: llmDescription
Multiple vulnerabilities in the authentication mechanism of confd in FortiWeb versions 6.4.1, 6.4.0, 6.3.0 through 6.3.15, 6.2.0 through 6.2.6, 6.1.0 through 6.1.2, 6.0.0 thorugh 6.0.7, including an instance of concurrent execution using shared resource with improper synchronization and one of authentication bypass by capture-replay, may allow a remote unauthenticated attacker to circumvent the authentication process and authenticate as a legitimate cluster peer.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_confirm
https://fortiguard.com/advisory/FG-IR-21-130
Scores
CVSS v3
7.3
EPSS
0.0025
EPSS Percentile
48.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-362
Status
published
Products (7)
fortinet/fortiweb
6.1.0
fortinet/fortiweb
6.1.1
fortinet/fortiweb
6.1.2
fortinet/fortiweb
6.4.0
fortinet/fortiweb
6.4.1
fortinet/fortiweb
6.4.2
fortinet/fortiweb
6.0.0 - 6.0.7
Published
Dec 08, 2021
Tracked Since
Feb 18, 2026