6.4.2

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-04	CVE-2021-24018	Out-of-bounds Write vulnerability in Fortinet Fortios A buffer underwrite vulnerability in the firmware verification routine of FortiOS before 7.0.1 may allow an attacker located in the adjacent network to potentially execute arbitrary code via a specifically crafted firmware image. low complexity fortinet CWE-787	8.8
2021-06-02	CVE-2021-24012	Improper Certificate Validation vulnerability in Fortinet Fortios An improper following of a certificate's chain of trust vulnerability in FortiGate versions 6.4.0 to 6.4.4 may allow an LDAP user to connect to SSLVPN with any certificate that is signed by a trusted Certificate Authority. network low complexity fortinet CWE-295	7.5