cvelistv5 - cve-2021-32589

CVE-2021-32589 (GCVE-0-2021-32589)

Vulnerability from cvelistv5

Published

2024-12-19 12:22

Modified

2024-12-20 21:55

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:W/RC:C

CWE

CWE-416 - Execute unauthorized code or commands

Summary

A Use After Free (CWE-416) vulnerability in FortiManager version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.2.10 and below, version 5.0.12 and below and FortiAnalyzer version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.3.11, version 5.2.10 to 5.2.4 fgfmsd daemon may allow a remote, non-authenticated attacker to execute unauthorized code as root via sending a specifically crafted request to the fgfm port of the targeted device.

References

►

URL

Tags

psirt@fortinet.com

https://fortiguard.fortinet.com/psirt/FG-IR-21-067

Vendor Advisory

Impacted products

Vendor

Product

Version

►

Fortinet

FortiManager

Version: 7.0.0
Version: 6.4.0   ≤ 6.4.5
Version: 6.2.0   ≤ 6.2.7
Version: 6.0.0   ≤ 6.0.10
Version: 5.6.0   ≤ 5.6.10
Version: 5.4.0   ≤ 5.4.7
Version: 5.2.0   ≤ 5.2.10
Version: 5.0.0   ≤ 5.0.12
    cpe:2.3:o:fortinet:fortimanager:7.0.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.4.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.4.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.4.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.4.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.4.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.4.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.2.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.2.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.2.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.2.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.2.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.2.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.2.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.2.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.10:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.9:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.8:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:6.0.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.10:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.9:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.8:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.6.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.4.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.4.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.4.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.4.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.4.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.4.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.4.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.4.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.10:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.9:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.8:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.2.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.12:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.11:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.10:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.9:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.8:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortimanager:5.0.0:*:*:*:*:*:*:*

Fortinet

FortiAnalyzer

Version: 7.0.0
Version: 6.4.0   ≤ 6.4.5
Version: 6.2.0   ≤ 6.2.7
Version: 6.0.0   ≤ 6.0.10
Version: 5.6.0   ≤ 5.6.10
Version: 5.4.0   ≤ 5.4.7
Version: 5.3.11
Version: 5.2.4   ≤ 5.2.10
    cpe:2.3:o:fortinet:fortianalyzer:7.0.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.4.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.4.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.4.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.4.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.4.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.4.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.2.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.2.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.2.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.2.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.2.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.2.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.2.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.2.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.10:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.9:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.8:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:6.0.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.10:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.9:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.8:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.6.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.4.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.4.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.4.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.4.4:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.4.3:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.4.2:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.4.1:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.4.0:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.3.11:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.2.10:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.2.9:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.2.8:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.2.7:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.2.6:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.2.5:*:*:*:*:*:*:*
    cpe:2.3:o:fortinet:fortianalyzer:5.2.4:*:*:*:*:*:*:*

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-32589",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-20T21:54:22.696432Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-12-20T21:55:26.925Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:o:fortinet:fortimanager:7.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.4.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.4.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.4.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.4.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.4.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.4.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.2.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.2.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.2.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.2.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.10:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:6.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.10:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.6.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.4.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.4.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.4.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.4.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.4.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.4.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.4.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.4.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.10:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.2.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.12:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.11:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.10:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortimanager:5.0.0:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "FortiManager",
          "vendor": "Fortinet",
          "versions": [
            {
              "status": "affected",
              "version": "7.0.0"
            },
            {
              "lessThanOrEqual": "6.4.5",
              "status": "affected",
              "version": "6.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.2.7",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.10",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.6.10",
              "status": "affected",
              "version": "5.6.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.7",
              "status": "affected",
              "version": "5.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.2.10",
              "status": "affected",
              "version": "5.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.0.12",
              "status": "affected",
              "version": "5.0.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "cpes": [
            "cpe:2.3:o:fortinet:fortianalyzer:7.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.4.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.4.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.4.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.4.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.4.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.4.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.2.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.2.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.2.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.2.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.2.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.2.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.2.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.10:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:6.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.10:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.6.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.4.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.4.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.4.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.4.4:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.4.3:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.4.2:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.4.1:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.4.0:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.3.11:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.2.10:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.2.9:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.2.8:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.2.7:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.2.6:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.2.5:*:*:*:*:*:*:*",
            "cpe:2.3:o:fortinet:fortianalyzer:5.2.4:*:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "FortiAnalyzer",
          "vendor": "Fortinet",
          "versions": [
            {
              "status": "affected",
              "version": "7.0.0"
            },
            {
              "lessThanOrEqual": "6.4.5",
              "status": "affected",
              "version": "6.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.2.7",
              "status": "affected",
              "version": "6.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.10",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.6.10",
              "status": "affected",
              "version": "5.6.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.7",
              "status": "affected",
              "version": "5.4.0",
              "versionType": "semver"
            },
            {
              "status": "affected",
              "version": "5.3.11"
            },
            {
              "lessThanOrEqual": "5.2.10",
              "status": "affected",
              "version": "5.2.4",
              "versionType": "semver"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A Use After Free (CWE-416) vulnerability in FortiManager version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.2.10 and below, version 5.0.12 and below and FortiAnalyzer version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.3.11, version 5.2.10 to 5.2.4 fgfmsd daemon may allow a remote, non-authenticated attacker to execute unauthorized code as root via sending a specifically crafted request to the fgfm port of the targeted device."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:W/RC:C",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Execute unauthorized code or commands",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-12-19T16:13:18.521Z",
        "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "shortName": "fortinet"
      },
      "references": [
        {
          "name": "https://fortiguard.fortinet.com/psirt/FG-IR-21-067",
          "url": "https://fortiguard.fortinet.com/psirt/FG-IR-21-067"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Please upgrade to FortiPortal version 6.0.6 or above \nPlease upgrade to FortiPortal version 5.3.7 or above \nPlease upgrade to FortiManager version 7.0.1 or above \nPlease upgrade to FortiManager version 6.4.6 or above \nPlease upgrade to FortiManager version 6.2.8 or above \nPlease upgrade to FortiManager version 6.0.11 or above \nPlease upgrade to FortiManager version 5.6.11 or above \nPlease upgrade to FortiAnalyzer version 7.0.1 or above \nPlease upgrade to FortiAnalyzer version 6.4.6 or above \nPlease upgrade to FortiAnalyzer version 6.2.8 or above \nPlease upgrade to FortiAnalyzer version 6.0.11 or above \nPlease upgrade to FortiAnalyzer version 5.6.11 or above"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
    "assignerShortName": "fortinet",
    "cveId": "CVE-2021-32589",
    "datePublished": "2024-12-19T12:22:32.543Z",
    "dateReserved": "2021-05-11T21:19:05.181Z",
    "dateUpdated": "2024-12-20T21:55:26.925Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-32589\",\"sourceIdentifier\":\"psirt@fortinet.com\",\"published\":\"2024-12-19T13:15:05.707\",\"lastModified\":\"2025-01-31T17:42:05.437\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A Use After Free (CWE-416) vulnerability in FortiManager version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.2.10 and below, version 5.0.12 and below and FortiAnalyzer version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.3.11, version 5.2.10 to 5.2.4 fgfmsd daemon may allow a remote, non-authenticated attacker to execute unauthorized code as root via sending a specifically crafted request to the fgfm port of the targeted device.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad de Use After Free (CWE-416) en FortiManager versi\u00f3n 7.0.0, versi\u00f3n 6.4.5 y anteriores, versi\u00f3n 6.2.7 y anteriores, versi\u00f3n 6.0.10 y anteriores, versi\u00f3n 5.6.10 y anteriores, versi\u00f3n 5.4.7 y anteriores, versi\u00f3n 5.2.10 y anteriores, versi\u00f3n 5.0.12 y anteriores y FortiAnalyzer versi\u00f3n 7.0.0, versi\u00f3n 6.4.5 y anteriores, versi\u00f3n 6.2.7 y anteriores, versi\u00f3n 6.0.10 y anteriores, versi\u00f3n 5.6.10 y anteriores, versi\u00f3n 5.4.7 y anteriores, versi\u00f3n 5.3.11, versi\u00f3n 5.2.10 a 5.2.4 del daemon fgfmsd puede permitir que un atacante remoto no autenticado ejecute c\u00f3digo no autorizado como superusuario mediante el env\u00edo de una solicitud espec\u00edficamente manipulada al puerto fgfm del dispositivo de destino.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@fortinet.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"psirt@fortinet.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.2.4\",\"versionEndExcluding\":\"5.6.11\",\"matchCriteriaId\":\"DC678658-46C6-49D6-853F-488EB4C2950F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.11\",\"matchCriteriaId\":\"093F543B-6709-4B77-87A6-7989B3EF1B2B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2.0\",\"versionEndExcluding\":\"6.2.8\",\"matchCriteriaId\":\"E0F1A4F4-3123-4032-A82A-A4E1E2DFD2EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.4.0\",\"versionEndExcluding\":\"6.4.6\",\"matchCriteriaId\":\"23A36459-01FE-4ABC-8C5B-783408B43E22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortianalyzer:7.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7DC87E0-0C9F-4E65-B96E-7E91F71764AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.0.0\",\"versionEndExcluding\":\"5.6.11\",\"matchCriteriaId\":\"E17DB3C5-AB61-49E4-9281-27F41B565FF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.11\",\"matchCriteriaId\":\"A817FD04-EEF8-40C9-AF7F-B9C1458226F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2.0\",\"versionEndExcluding\":\"6.2.8\",\"matchCriteriaId\":\"C4A894BD-7AB4-4F10-819A-4DE3F9C961CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.4.0\",\"versionEndExcluding\":\"6.4.6\",\"matchCriteriaId\":\"F3FC7F19-2794-4E8E-A93A-4031D94D2A7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortimanager:7.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A4E6379-A79E-4135-BAF1-D53E8F56798B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortiportal:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0.0\",\"versionEndExcluding\":\"5.3.7\",\"matchCriteriaId\":\"F3AF186D-F8CF-4050-B41E-FE25825C7834\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortiportal:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.6\",\"matchCriteriaId\":\"08ECB3CD-EAA3-488F-9711-85F88B80E2F1\"}]}]}],\"references\":[{\"url\":\"https://fortiguard.fortinet.com/psirt/FG-IR-21-067\",\"source\":\"psirt@fortinet.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-32589\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-12-20T21:54:22.696432Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-12-20T21:54:52.493Z\"}}], \"cna\": {\"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.7, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:W/RC:C\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"cpes\": [\"cpe:2.3:o:fortinet:fortimanager:7.0.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.4.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.4.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.4.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.4.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.4.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.4.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.2.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.2.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.2.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.2.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.2.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.2.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.2.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.2.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.10:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.9:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.8:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:6.0.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.10:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.9:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.8:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.6.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.4.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.4.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.4.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.4.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.4.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.4.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.4.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.4.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.10:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.9:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.8:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.2.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.12:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.11:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.10:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.9:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.8:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortimanager:5.0.0:*:*:*:*:*:*:*\"], \"vendor\": \"Fortinet\", \"product\": \"FortiManager\", \"versions\": [{\"status\": \"affected\", \"version\": \"7.0.0\"}, {\"status\": \"affected\", \"version\": \"6.4.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.4.5\"}, {\"status\": \"affected\", \"version\": \"6.2.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.2.7\"}, {\"status\": \"affected\", \"version\": \"6.0.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.0.10\"}, {\"status\": \"affected\", \"version\": \"5.6.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.6.10\"}, {\"status\": \"affected\", \"version\": \"5.4.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.4.7\"}, {\"status\": \"affected\", \"version\": \"5.2.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.2.10\"}, {\"status\": \"affected\", \"version\": \"5.0.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.0.12\"}], \"defaultStatus\": \"unaffected\"}, {\"cpes\": [\"cpe:2.3:o:fortinet:fortianalyzer:7.0.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.4.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.4.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.4.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.4.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.4.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.4.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.2.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.2.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.2.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.2.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.2.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.2.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.2.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.2.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.10:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.9:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.8:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:6.0.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.10:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.9:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.8:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.6.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.4.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.4.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.4.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.4.4:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.4.3:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.4.2:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.4.1:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.4.0:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.3.11:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.2.10:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.2.9:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.2.8:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.2.7:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.2.6:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.2.5:*:*:*:*:*:*:*\", \"cpe:2.3:o:fortinet:fortianalyzer:5.2.4:*:*:*:*:*:*:*\"], \"vendor\": \"Fortinet\", \"product\": \"FortiAnalyzer\", \"versions\": [{\"status\": \"affected\", \"version\": \"7.0.0\"}, {\"status\": \"affected\", \"version\": \"6.4.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.4.5\"}, {\"status\": \"affected\", \"version\": \"6.2.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.2.7\"}, {\"status\": \"affected\", \"version\": \"6.0.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.0.10\"}, {\"status\": \"affected\", \"version\": \"5.6.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.6.10\"}, {\"status\": \"affected\", \"version\": \"5.4.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.4.7\"}, {\"status\": \"affected\", \"version\": \"5.3.11\"}, {\"status\": \"affected\", \"version\": \"5.2.4\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.2.10\"}], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Please upgrade to FortiPortal version 6.0.6 or above \\nPlease upgrade to FortiPortal version 5.3.7 or above \\nPlease upgrade to FortiManager version 7.0.1 or above \\nPlease upgrade to FortiManager version 6.4.6 or above \\nPlease upgrade to FortiManager version 6.2.8 or above \\nPlease upgrade to FortiManager version 6.0.11 or above \\nPlease upgrade to FortiManager version 5.6.11 or above \\nPlease upgrade to FortiAnalyzer version 7.0.1 or above \\nPlease upgrade to FortiAnalyzer version 6.4.6 or above \\nPlease upgrade to FortiAnalyzer version 6.2.8 or above \\nPlease upgrade to FortiAnalyzer version 6.0.11 or above \\nPlease upgrade to FortiAnalyzer version 5.6.11 or above\"}], \"references\": [{\"url\": \"https://fortiguard.fortinet.com/psirt/FG-IR-21-067\", \"name\": \"https://fortiguard.fortinet.com/psirt/FG-IR-21-067\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A Use After Free (CWE-416) vulnerability in FortiManager version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.2.10 and below, version 5.0.12 and below and FortiAnalyzer version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.3.11, version 5.2.10 to 5.2.4 fgfmsd daemon may allow a remote, non-authenticated attacker to execute unauthorized code as root via sending a specifically crafted request to the fgfm port of the targeted device.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"Execute unauthorized code or commands\"}]}], \"providerMetadata\": {\"orgId\": \"6abe59d8-c742-4dff-8ce8-9b0ca1073da8\", \"shortName\": \"fortinet\", \"dateUpdated\": \"2024-12-19T16:13:18.521Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2021-32589\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-12-20T21:55:26.925Z\", \"dateReserved\": \"2021-05-11T21:19:05.181Z\", \"assignerOrgId\": \"6abe59d8-c742-4dff-8ce8-9b0ca1073da8\", \"datePublished\": \"2024-12-19T12:22:32.543Z\", \"assignerShortName\": \"fortinet\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

fkie_cve-2021-32589

Vulnerability from fkie_nvd

Published

2024-12-19 13:15

Modified

2025-01-31 17:42

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

▶	URL	Tags
	psirt@fortinet.com	https://fortiguard.fortinet.com/psirt/FG-IR-21-067	Vendor Advisory

Impacted products

Vendor	Product	Version
fortinet	fortianalyzer	*
fortinet	fortianalyzer	*
fortinet	fortianalyzer	*
fortinet	fortianalyzer	*
fortinet	fortianalyzer	7.0.0
fortinet	fortimanager	*
fortinet	fortimanager	*
fortinet	fortimanager	*
fortinet	fortimanager	*
fortinet	fortimanager	7.0.0
fortinet	fortiportal	*
fortinet	fortiportal	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DC678658-46C6-49D6-853F-488EB4C2950F",
              "versionEndExcluding": "5.6.11",
              "versionStartIncluding": "5.2.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "093F543B-6709-4B77-87A6-7989B3EF1B2B",
              "versionEndExcluding": "6.0.11",
              "versionStartIncluding": "6.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0F1A4F4-3123-4032-A82A-A4E1E2DFD2EF",
              "versionEndExcluding": "6.2.8",
              "versionStartIncluding": "6.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortianalyzer:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "23A36459-01FE-4ABC-8C5B-783408B43E22",
              "versionEndExcluding": "6.4.6",
              "versionStartIncluding": "6.4.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortianalyzer:7.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7DC87E0-0C9F-4E65-B96E-7E91F71764AC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E17DB3C5-AB61-49E4-9281-27F41B565FF3",
              "versionEndExcluding": "5.6.11",
              "versionStartIncluding": "5.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A817FD04-EEF8-40C9-AF7F-B9C1458226F2",
              "versionEndExcluding": "6.0.11",
              "versionStartIncluding": "6.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4A894BD-7AB4-4F10-819A-4DE3F9C961CC",
              "versionEndExcluding": "6.2.8",
              "versionStartIncluding": "6.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortimanager:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F3FC7F19-2794-4E8E-A93A-4031D94D2A7F",
              "versionEndExcluding": "6.4.6",
              "versionStartIncluding": "6.4.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortimanager:7.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8A4E6379-A79E-4135-BAF1-D53E8F56798B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortiportal:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F3AF186D-F8CF-4050-B41E-FE25825C7834",
              "versionEndExcluding": "5.3.7",
              "versionStartIncluding": "4.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortiportal:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "08ECB3CD-EAA3-488F-9711-85F88B80E2F1",
              "versionEndExcluding": "6.0.6",
              "versionStartIncluding": "6.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A Use After Free (CWE-416) vulnerability in FortiManager version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.2.10 and below, version 5.0.12 and below and FortiAnalyzer version 7.0.0, version 6.4.5 and below, version 6.2.7 and below, version 6.0.10 and below, version 5.6.10 and below, version 5.4.7 and below, version 5.3.11, version 5.2.10 to 5.2.4 fgfmsd daemon may allow a remote, non-authenticated attacker to execute unauthorized code as root via sending a specifically crafted request to the fgfm port of the targeted device."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad de Use After Free (CWE-416) en FortiManager versi\u00f3n 7.0.0, versi\u00f3n 6.4.5 y anteriores, versi\u00f3n 6.2.7 y anteriores, versi\u00f3n 6.0.10 y anteriores, versi\u00f3n 5.6.10 y anteriores, versi\u00f3n 5.4.7 y anteriores, versi\u00f3n 5.2.10 y anteriores, versi\u00f3n 5.0.12 y anteriores y FortiAnalyzer versi\u00f3n 7.0.0, versi\u00f3n 6.4.5 y anteriores, versi\u00f3n 6.2.7 y anteriores, versi\u00f3n 6.0.10 y anteriores, versi\u00f3n 5.6.10 y anteriores, versi\u00f3n 5.4.7 y anteriores, versi\u00f3n 5.3.11, versi\u00f3n 5.2.10 a 5.2.4 del daemon fgfmsd puede permitir que un atacante remoto no autenticado ejecute c\u00f3digo no autorizado como superusuario mediante el env\u00edo de una solicitud espec\u00edficamente manipulada al puerto fgfm del dispositivo de destino."
    }
  ],
  "id": "CVE-2021-32589",
  "lastModified": "2025-01-31T17:42:05.437",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "psirt@fortinet.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-12-19T13:15:05.707",
  "references": [
    {
      "source": "psirt@fortinet.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://fortiguard.fortinet.com/psirt/FG-IR-21-067"
    }
  ],
  "sourceIdentifier": "psirt@fortinet.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "psirt@fortinet.com",
      "type": "Primary"
    }
  ]
}

ghsa-5mvx-j4j8-xv4p

Vulnerability from github

Published

2024-12-19 15:31

Modified

2024-12-19 15:31

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

A use after free in Fortinet FortiManager, FortiAnalyzer allows attacker to execute unauthorized code or commands via

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-32589"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-416"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-12-19T13:15:05Z",
    "severity": "HIGH"
  },
  "details": "A use after free in Fortinet FortiManager, FortiAnalyzer allows attacker to execute unauthorized code or commands via \u003cinsert attack vector here\u003e",
  "id": "GHSA-5mvx-j4j8-xv4p",
  "modified": "2024-12-19T15:31:11Z",
  "published": "2024-12-19T15:31:11Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32589"
    },
    {
      "type": "WEB",
      "url": "https://fortiguard.fortinet.com/psirt/FG-IR-21-067"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

gsd-2021-32589

Vulnerability from gsd

Modified

2023-12-13 01:23

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2021-32589

Aliases

CVE-2021-32589

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-32589",
    "id": "GSD-2021-32589"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-32589"
      ],
      "id": "GSD-2021-32589",
      "modified": "2023-12-13T01:23:08.939940Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2021-32589",
        "STATE": "RESERVED"
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
          }
        ]
      }
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2021-32589 (GCVE-0-2021-32589)

Vulnerability from cvelistv5

fkie_cve-2021-32589

Vulnerability from fkie_nvd

ghsa-5mvx-j4j8-xv4p

Vulnerability from github

gsd-2021-32589

Vulnerability from gsd

Tags

Sightings

Nomenclature