Back to CVE List

CVE-2026-59837

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
6.6 / 10
Vector String
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Vulnerability Description

A stack-based buffer overflow vulnerability in Fortinet FortiOS 7.4.0 through 7.4.1, FortiOS 7.2 all versions, FortiPAM 1.8.0 through 1.8.2, FortiPAM 1.7 all versions, FortiPAM 1.6 all versions, FortiPAM 1.5 all versions, FortiPAM 1.4 all versions, FortiPAM 1.3 all versions, FortiPAM 1.2 all versions, FortiPAM 1.1 all versions, FortiPAM 1.0 all versions, FortiProxy 7.4.0 through 7.4.13, FortiProxy 7.2 all versions may allow a privileged authenticated attacker who can bypass stack protection and ASLR to execute arbitrary code or commands via crafted HTTP requests.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-121
Source
NVD
Vendor
Fortinet
Product
FortiPAM, FortiSASE, FortiProxy, FortiOS

External References

Discussion (0)

Add Comment

No comments yet. Be the first!