Integer overflow in SSLVPN allocator Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-21-049 Final 1 1 2021-12-07T00:00:00 Current version 2021-12-07T00:00:00 2021-12-07T00:00:00 An integer overflow or wraparound vulnerability [CWE-190] in FortiOS SSLVPN memory allocator may allow an unauthenticated attacker to corrupt control data on the heap via specifically crafted requests to SSLVPN, resulting in potentially arbitrary code execution. Execute unauthorized code or commands FortiOS version 7.0.0 and below.FortiOS version 6.4.5 and below.FortiOS version 6.2.9 and below.FortiOS version 6.0.12 and below. Upgrade to FortiOS 7.0.1. Upgrade to FortiOS 6.4.6. Upgrade to FortiOS 6.2.10. Upgrade to FortiOS 6.0.13.For new high-end F-Series Models (FG-1800F, FG-3800F, FG-4200F, FG-4400F) please upgrade to 6.2.9 Internally discovered and reported by Giuseppe Cocomazzi of Fortinet Product Security team. CVE-2021-26109 7.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C https://fortiguard.fortinet.com/psirt/FG-IR-21-049 Integer overflow in SSLVPN allocator Reference>