VDB
CVE-2021-26094
CVE-2021-26094
PUBLISHED
CVSS 9.300000190734863 CRITICAL
De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fortinet | Fortinet FortiOS, fortiADC | FortiOS 6.0.2, 5.6.7 and before, FortiADC 6.1.0, 6.0.0 to 6.0.1, 5.4.0 to 5.4.4 |
| Fortinet | FortiWeb | |
| Fortinet | FortiGate | |
| Fortinet | FortiADC | |
| Fortinet | N/A | |
| Fortinet | FortiSwitch | |
| Fortinet | FortiProxy | |
| Fortinet | FortiOS |
Exploit Intelligence
- CIRCL seen: CVE-2018-13374 (circl-sighting)
- CIRCL seen: CVE-2018-13374 (circl-sighting)
- CIRCL exploited: CVE-2018-13374 (circl-sighting)
- CIRCL seen: CVE-2018-13374 (circl-sighting)
- CIRCL seen: CVE-2018-13374 (circl-sighting)
- CIRCL exploited: CVE-2018-13374 (circl-sighting)
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-13374 (circl)
- https://fortiguard.com/advisory/FG-IR-18-157 (circl)
Timeline
- Jan 16, 2019 PoC Published
- Jun 2, 2021 CVE Published
- May 12, 2022 PoC Published
- Jun 14, 2023 PoC Published
- Dec 24, 2024 PoC Published
- Feb 23, 2025 PoC Published
- Feb 2, 2026 PoC Published
References
- https://www.fortiguard.com/psirt/FG-IR-21-002 advisory
- https://www.fortiguard.com/psirt/FG-IR-20-049 advisory
- https://www.fortiguard.com/psirt/FG-IR-20-231 advisory
- https://www.fortiguard.com/psirt/FG-IR-21-006 advisory
- https://www.fortiguard.com/psirt/FG-IR-18-157 advisory
- https://www.fortiguard.com/psirt/FG-IR-21-001 advisory
- https://www.fortiguard.com/psirt/FG-IR-20-233 advisory
- https://www.fortiguard.com/psirt/FG-IR-20-147 advisory
- https://www.fortiguard.com/psirt/FG-IR-21-018 advisory
- https://www.fortiguard.com/psirt/FG-IR-20-137 advisory
- https://www.fortiguard.com/psirt/FG-IR-20-120 advisory
- https://www.fortiguard.com/psirt/FG-IR-20-199 advisory
- https://www.fortiguard.com/psirt/FG-IR-21-026 advisory
- https://fortiguard.com/advisory/FG-IR-18-157 url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-13374 url