CVE-2020-29019

Description

A stack-based buffer overflow vulnerability in FortiWeb 6.3.0 through 6.3.7 and version before 6.2.4 may allow a remote, unauthenticated attacker to crash the httpd daemon thread by sending a request with a crafted cookie header.

PUBLISHED Reserved 2020-11-24 | Published 2021-01-14 | Updated 2024-10-25 | Assigner fortinet

Problem types

denial of service

References

www.fortiguard.com/psirt/FG-IR-20-126

www.fortiguard.com/psirt/FG-IR-20-126

cve.org (CVE-2020-29019)

nvd.nist.gov (CVE-2020-29019)

Download JSON