PT-2026-24240 · Fortinet · Fortiswitchaxfixed
Publicado
2026-03-10
·
Atualizado
2026-03-18
·
CVE-2026-22627
CVSS v3.1
8.8
Alta
| Vetor | AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
FortiSwitchAXFixed versions 1.0.0 through 1.0.1
Description
A buffer copy issue exists where the size of the input is not checked, potentially allowing an unauthenticated attacker on the same network to execute code or commands on the device. This can occur by sending a specially crafted LLDP (Link Layer Discovery Protocol) packet.
Recommendations
Update FortiSwitchAXFixed to a version beyond 1.0.1.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Fortiswitchaxfixed