PT-2014-2005 · Fortinet · Fortios

Published

2014-08-25

Updated

2017-08-29

CVE-2014-2216

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions FortiOS versions prior to 4.3.16 FortiOS versions prior to 5.0.8

Description The issue is caused by errors in input processing in the FortiManager service of the FortiOS operating system. This can be exploited by a remote attacker to potentially execute arbitrary code or cause a denial of service.

Recommendations For FortiOS versions prior to 4.3.16, update to version 4.3.16 or later. For FortiOS versions prior to 5.0.8, update to version 5.0.8 or later.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2018-01302

CVE-2014-2216

Affected Products

Fortios

PT-2014-2005 · Fortinet · Fortios

CVE-2014-2216

Weakness Enumeration

Related Identifiers

Affected Products

References · 8