CVE-2021-26102

Name of the Vulnerable Software and Affected Versions FortiWAN versions 4.5.7 and below FortiWAN version 4.4 and all versions below

Description The issue is related to a relative path traversal vulnerability that can be exploited by a remote attacker to impact the confidentiality, integrity, and availability of protected information. This can be achieved by sending a crafted POST request, allowing the attacker to delete files on the system. Specifically, deleting certain configuration files will reset the Admin password to its default value.

Recommendations For FortiWAN versions 4.5.7 and below, consider disabling the ability to send crafted POST requests until a patch is available. For FortiWAN version 4.4 and all versions below, restrict access to the system to minimize the risk of exploitation. Avoid using the vulnerable relative path traversal functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.