A buffer overflow vulnerability in FortiAnalyzer CLI 6.4.5 and below, 6.2.7 and below, 6.0.x and FortiManager CLI 6.4.5 and below, 6.2.7 and below, 6.0.x may allow an authenticated, local attacker to perform a Denial of Service attack by running the `diagnose system geoip-city` command with a large ip value.
History

Fri, 25 Oct 2024 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: fortinet

Published: 2021-07-20T10:32:49

Updated: 2024-10-25T13:54:50.579Z

Reserved: 2021-01-13T00:00:00

Link: CVE-2021-24022

cve-icon Vulnrichment

Updated: 2024-08-03T19:14:10.120Z

cve-icon NVD

Status : Modified

Published: 2021-07-20T11:15:11.410

Modified: 2024-11-21T05:52:13.657

Link: CVE-2021-24022

cve-icon Redhat

No data.