Vulnerabilities > CVE-2021-42757 - Out-of-bounds Write vulnerability in Fortinet products

047910
CVSS 6.7 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
fortinet
CWE-787

Summary

A buffer overflow [CWE-121] in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authenticated local attacker to achieve arbitrary code execution via specially crafted command line arguments.

Vulnerable Configurations

Part Description Count
Application
Fortinet
386
OS
Fortinet
148

Common Weakness Enumeration (CWE)