Stack-based buffer overflow in bmstatd Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-21-065 Final 1 1 2022-04-05T00:00:00 Current version 2022-04-05T00:00:00 2022-04-05T00:00:00 Multiple stack-based buffer overflow vulnerabilities [CWE-121] both in network daemons and in the command line interpreter of FortiWAN may allow an unauthenticated attacker to potentially corrupt control data in memory and execute arbitrary code via specifically crafted requests. None Execute unauthorized code or commands FortiWAN version 4.5.8 and below. Upgrade to upcoming FortiWAN version 4.5.9. Internally discovered and reported by Giuseppe Cocomazzi of Fortinet Product Security team. CVE-2021-26112 7.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:U/RC:C https://fortiguard.fortinet.com/psirt/FG-IR-21-065 Stack-based buffer overflow in bmstatd Reference>