A format string vulnerability in FortiWeb 6.3.0 through 6.3.5 may allow an authenticated, remote attacker to read the content of memory and retrieve sensitive data via the redir parameter.
History

Fri, 25 Oct 2024 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2021-01-14T16:06:03

Updated: 2024-10-25T14:23:23.372Z

Reserved: 2020-11-24T00:00:00

Link: CVE-2020-29018

cve-icon Vulnrichment

Updated: 2024-08-04T16:48:01.346Z

cve-icon NVD

Status : Modified

Published: 2021-01-14T16:15:18.117

Modified: 2024-11-21T05:23:30.910

Link: CVE-2020-29018

cve-icon Redhat

No data.