Multiple vulnerabilities in FortiOS
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2021-32600 CVE-2021-36169 |
| CWE-ID | CWE-284 CWE-94 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software Subscribe |
FortiOS Operating systems & Components / Operating system |
| Vendor | Fortinet, Inc |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Improper access control
EUVDB-ID: #VU56381
Risk: Low
CVSSv3.1: 3.3 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-32600
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain unauthorized access to sensitive information.
The vulnerability exists due to improper access restrictions. A local authenticated user assigned to a specific VDOM can retrieve
other VDOMs information such as the admin account list and the network
interface list.
Install updates from vendor's website.
Vulnerable software versionsFortiOS: 5.6.0 - 7.0.0
CPE2.3- cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:6.0.13:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:5.6.13:*:*:*:*:*:*:*
http://www.fortiguard.com/psirt/FG-IR-20-243
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Code Injection
EUVDB-ID: #VU56380
Risk: Low
CVSSv3.1: 3.7 [CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2021-36169
CWE-ID:
CWE-94 - Improper Control of Generation of Code ('Code Injection')
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to improper input validation within the debug functionality in FortiGate. A local privileged user can execute unauthorized code or commands via specific
chains of `print str` and `cmd mem` cli commands to, respectively, read and write hexadecimal values to any memory address.
Install updates from vendor's website.
Vulnerable software versionsFortiOS: 6.2.0 - 7.0.0
CPE2.3- cpe:2.3:o:fortinet:fortios:7.0.0:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:6.4.6:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:6.2.9:*:*:*:*:*:*:*
http://www.fortiguard.com/psirt/FG-IR-21-091
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
