CVE-2021-42757

Severity Score

6.7

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A buffer overflow [CWE-121] in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authenticated local attacker to achieve arbitrary code execution via specially crafted command line arguments.

Un desbordamiento de búfer [CWE-121] en la biblioteca del cliente TFTP de FortiOS versiones anteriores a 6.4.7 y FortiOS versiones 7.0.0 hasta 7.0.2, puede permitir a un atacante local autenticado lograr una ejecución de código arbitrario por medio de argumentos de línea de comandos especialmente diseñados

*Credits: N/A

CVSS Scores

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2021-10-20 CVE Reserved
2021-12-08 CVE Published
2023-03-08 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-787: Out-of-bounds Write

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://fortiguard.com/advisory/FG-IR-21-173	2024-01-18

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Fortinet Search vendor "Fortinet"		Fortiadc Search vendor "Fortinet" for product "Fortiadc"				>= 5.0.0 <= 6.1.5 Search vendor "Fortinet" for product "Fortiadc" and version " >= 5.0.0 <= 6.1.5"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiadc Search vendor "Fortinet" for product "Fortiadc"				>= 6.2.0 <= 6.2.2 Search vendor "Fortinet" for product "Fortiadc" and version " >= 6.2.0 <= 6.2.2"		-		Affected
Fortinet Search vendor "Fortinet"		Fortianalyzer Search vendor "Fortinet" for product "Fortianalyzer"				>= 6.0.0 <= 6.4.7 Search vendor "Fortinet" for product "Fortianalyzer" and version " >= 6.0.0 <= 6.4.7"		-		Affected
Fortinet Search vendor "Fortinet"		Fortianalyzer Search vendor "Fortinet" for product "Fortianalyzer"				>= 7.0.0 <= 7.0.2 Search vendor "Fortinet" for product "Fortianalyzer" and version " >= 7.0.0 <= 7.0.2"		-		Affected
Fortinet Search vendor "Fortinet"		Fortimail Search vendor "Fortinet" for product "Fortimail"				>= 5.4.0 <= 6.2.7 Search vendor "Fortinet" for product "Fortimail" and version " >= 5.4.0 <= 6.2.7"		-		Affected
Fortinet Search vendor "Fortinet"		Fortimail Search vendor "Fortinet" for product "Fortimail"				>= 6.4.0 <= 6.4.6 Search vendor "Fortinet" for product "Fortimail" and version " >= 6.4.0 <= 6.4.6"		-		Affected
Fortinet Search vendor "Fortinet"		Fortimail Search vendor "Fortinet" for product "Fortimail"				>= 7.0.0 <= 7.0.2 Search vendor "Fortinet" for product "Fortimail" and version " >= 7.0.0 <= 7.0.2"		-		Affected
Fortinet Search vendor "Fortinet"		Fortimanager Search vendor "Fortinet" for product "Fortimanager"				>= 6.0.0 <= 6.4.7 Search vendor "Fortinet" for product "Fortimanager" and version " >= 6.0.0 <= 6.4.7"		-		Affected
Fortinet Search vendor "Fortinet"		Fortimanager Search vendor "Fortinet" for product "Fortimanager"				>= 7.0.0 <= 7.0.2 Search vendor "Fortinet" for product "Fortimanager" and version " >= 7.0.0 <= 7.0.2"		-		Affected
Fortinet Search vendor "Fortinet"		Fortindr Search vendor "Fortinet" for product "Fortindr"				>= 1.1.0 <= 1.5.2 Search vendor "Fortinet" for product "Fortindr" and version " >= 1.1.0 <= 1.5.2"		-		Affected
Fortinet Search vendor "Fortinet"		Fortios-6k7k Search vendor "Fortinet" for product "Fortios-6k7k"				<= 6.2.8 Search vendor "Fortinet" for product "Fortios-6k7k" and version " <= 6.2.8"		-		Affected
Fortinet Search vendor "Fortinet"		Fortios-6k7k Search vendor "Fortinet" for product "Fortios-6k7k"				6.4.2 Search vendor "Fortinet" for product "Fortios-6k7k" and version "6.4.2"		-		Affected
Fortinet Search vendor "Fortinet"		Fortios-6k7k Search vendor "Fortinet" for product "Fortios-6k7k"				6.4.6 Search vendor "Fortinet" for product "Fortios-6k7k" and version "6.4.6"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiportal Search vendor "Fortinet" for product "Fortiportal"				>= 5.0.0 <= 6.0.10 Search vendor "Fortinet" for product "Fortiportal" and version " >= 5.0.0 <= 6.0.10"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiproxy Search vendor "Fortinet" for product "Fortiproxy"				>= 1.0.0 <= 2.0.7 Search vendor "Fortinet" for product "Fortiproxy" and version " >= 1.0.0 <= 2.0.7"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiproxy Search vendor "Fortinet" for product "Fortiproxy"				7.0.0 Search vendor "Fortinet" for product "Fortiproxy" and version "7.0.0"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiproxy Search vendor "Fortinet" for product "Fortiproxy"				7.0.1 Search vendor "Fortinet" for product "Fortiproxy" and version "7.0.1"		-		Affected
Fortinet Search vendor "Fortinet"		Fortivoice Search vendor "Fortinet" for product "Fortivoice"				>= 6.0.0 <= 6.0.10 Search vendor "Fortinet" for product "Fortivoice" and version " >= 6.0.0 <= 6.0.10"		-		Affected
Fortinet Search vendor "Fortinet"		Fortivoice Search vendor "Fortinet" for product "Fortivoice"				>= 6.4.0 <= 6.4.4 Search vendor "Fortinet" for product "Fortivoice" and version " >= 6.4.0 <= 6.4.4"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiweb Search vendor "Fortinet" for product "Fortiweb"				>= 5.0.0 <= 6.3.16 Search vendor "Fortinet" for product "Fortiweb" and version " >= 5.0.0 <= 6.3.16"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiweb Search vendor "Fortinet" for product "Fortiweb"				6.4.0 Search vendor "Fortinet" for product "Fortiweb" and version "6.4.0"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiweb Search vendor "Fortinet" for product "Fortiweb"				6.4.1 Search vendor "Fortinet" for product "Fortiweb" and version "6.4.1"		-		Affected
Fortinet Search vendor "Fortinet"		Fortios Search vendor "Fortinet" for product "Fortios"				>= 5.0.0 <= 6.0.13 Search vendor "Fortinet" for product "Fortios" and version " >= 5.0.0 <= 6.0.13"		-		Affected
Fortinet Search vendor "Fortinet"		Fortios Search vendor "Fortinet" for product "Fortios"				>= 6.2.0 <= 6.2.9 Search vendor "Fortinet" for product "Fortios" and version " >= 6.2.0 <= 6.2.9"		-		Affected
Fortinet Search vendor "Fortinet"		Fortios Search vendor "Fortinet" for product "Fortios"				>= 6.4.0 <= 6.4.7 Search vendor "Fortinet" for product "Fortios" and version " >= 6.4.0 <= 6.4.7"		-		Affected
Fortinet Search vendor "Fortinet"		Fortios Search vendor "Fortinet" for product "Fortios"				>= 7.0.0 <= 7.0.2 Search vendor "Fortinet" for product "Fortios" and version " >= 7.0.0 <= 7.0.2"		-		Affected
Fortinet Search vendor "Fortinet"		Fortirecorder Firmware Search vendor "Fortinet" for product "Fortirecorder Firmware"				>= 2.6.0 <= 6.0.10 Search vendor "Fortinet" for product "Fortirecorder Firmware" and version " >= 2.6.0 <= 6.0.10"		-		Affected
Fortinet Search vendor "Fortinet"		Fortirecorder Firmware Search vendor "Fortinet" for product "Fortirecorder Firmware"				>= 6.4.0 <= 6.4.2 Search vendor "Fortinet" for product "Fortirecorder Firmware" and version " >= 6.4.0 <= 6.4.2"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiswitch Search vendor "Fortinet" for product "Fortiswitch"				>= 6.0.0 <= 6.4.9 Search vendor "Fortinet" for product "Fortiswitch" and version " >= 6.0.0 <= 6.4.9"		-		Affected
Fortinet Search vendor "Fortinet"		Fortiswitch Search vendor "Fortinet" for product "Fortiswitch"				>= 7.0.0 <= 7.0.3 Search vendor "Fortinet" for product "Fortiswitch" and version " >= 7.0.0 <= 7.0.3"		-		Affected