Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-12819

A heap-based buffer overflow vulnerability in the processing of Link Control Protocol messages in FortiGate versions 5.6.12, 6.0.10, 6.2.4 and 6.4.1 and earlier may allow a remote attacker with valid SSL VPN credentials to crash the SSL VPN daemon by sending a large LCP packet, when tunnel mode is enabled. Arbitrary code execution may be theoretically possible, albeit practically very difficult to achieve in this context

Published

2024-12-19T08:15:11.770

Last Modified

2025-01-21T20:58:57.503

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.4 (MEDIUM)

Weaknesses

Type: Secondary
CWE-122
Type: Primary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	fortinet	fortios	< 5.6.13	Yes
Operating System	fortinet	fortios	< 6.0.11	Yes
Operating System	fortinet	fortios	< 6.2.5	Yes
Operating System	fortinet	fortios	< 6.4.2	Yes

References

https://fortiguard.com/advisory/FG-IR-20-082 Vendor Advisory ([email protected])