← voltar
CVE-2019-17656

CVE-2019-17656

CVSS 5.4 MEDIUMEPSS 1.6%
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 5.4EPSS 1.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
12 abr 2021Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A Stack-based Buffer Overflow vulnerability in the HTTPD daemon of FortiOS 6.0.10 and below, 6.2.2 and below and FortiProxy 1.0.x, 1.1.x, 1.2.9 and below, 2.0.0 and below may allow an authenticated remote attacker to crash the service by sending a malformed PUT request to the server. Fortinet is not aware of any successful exploitation of this vulnerability that would lead to code execution.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Produtos afetados
Fortinet · Fortinet FortiProxy, FortiOS

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://fortiguard.com/advisory/FG-IR-19-248https://fortiguard.com/advisory/FG-IR-21-007