Exploit for #VU60735 Download of code without integrity check in FortiOS

Cybersecurity Help s.r.o.

Published: 2023-10-22

Vulnerability identifier: #VU60735

Vulnerability risk: Medium

CVSSv4.0: 8.7 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Green]

CVE-ID: CVE-2021-44168

CWE-ID: CWE-494

Exploitation vector: Local network

Exploits in database: 1

October 22, 2023
- CVE-2021-44168 (A download of code without integrity check vulnerability in the "execute restore src-vis" command of FortiOS before 7.0.3.) [Github]

Vulnerable software:
FortiOS
Operating systems & Components / Operating system

Vendor: Fortinet, Inc