CVE-2014-2216
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
25/08/2014
Last modified:
12/04/2025
Description
The FortiManager protocol service in Fortinet FortiOS before 4.3.16 and 5.0.0 before 5.0.8 on FortiGate devices allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted request.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:fortinet:fortios:*:*:*:*:*:*:*:* | 4.3.15 (including) | |
| cpe:2.3:o:fortinet:fortios:4.3.10:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:4.3.12:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:4.3.13:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:4.3.14:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:5.0.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:5.0.3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:5.0.4:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:5.0.5:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:5.0.6:*:*:*:*:*:*:* | ||
| cpe:2.3:o:fortinet:fortios:5.0.7:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://secunia.com/advisories/60724
- http://www.fortiguard.com/advisory/FG-IR-14-006/
- http://www.kb.cert.org/vuls/id/730964
- http://www.securityfocus.com/bid/69338
- http://www.securitytracker.com/id/1030753
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95442
- http://secunia.com/advisories/60724
- http://www.fortiguard.com/advisory/FG-IR-14-006/
- http://www.kb.cert.org/vuls/id/730964
- http://www.securityfocus.com/bid/69338
- http://www.securitytracker.com/id/1030753
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95442