Critical Infrastructure Sectors: Energy
A stack-based overflow vulnerability [CWE-124] in Fortinet FortiOS version 7.0.0 up to and including 7.0.10 and 7.2.0 up to and including 7.2.3 and FortiProxy version 7.0.0 up to and including 7.0.9 and 7.2.0 up to and including 7.2.2 allows a remote unauthenticated malicious user to execute arbitrary code or command via crafted packets reaching proxy policies or firewall policies with proxy mode alongside deep or full packet inspection.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fortinet fortiproxy 7.2.0 |
||
fortinet fortiproxy 7.2.1 |
||
fortinet fortios |
||
fortinet fortiproxy 7.2.2 |
||
fortinet fortiproxy |