Heap-based buffer overflow in oftpd daemon Fortinet PSIRT Advisories Fortinet PSIRT Contact: Website: https://fortiguard.fortinet.com/faq/psirt-contact FG-IR-26-121 Final 1 1 2026-04-14T00:00:00 Current version 2026-04-14T00:00:00 2026-04-14T00:00:00 A heap-based buffer overflow vulnerability [CWE-122] in FortiAnalyzer Cloud oftpd daemon may allow a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests. Successful exploitation would require a large amount of effort in preparation because of ASLR and network segmentation None Escalation of privilege None Internally discovered and reported by Gwendal Guégniaud of Fortinet Product Security team. FortiAnalyzer Cloud 7.6.4 FortiAnalyzer Cloud 7.6.3 FortiAnalyzer Cloud 7.6.2 FortiManager Cloud 7.6.4 FortiManager Cloud 7.6.3 FortiManager Cloud 7.6.2 CVE-2026-22828 FortiAnalyzer Cloud-7.6.4 FortiAnalyzer Cloud-7.6.3 FortiAnalyzer Cloud-7.6.2 FortiManager Cloud-7.6.4 FortiManager Cloud-7.6.3 FortiManager Cloud-7.6.2 7.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C https://fortiguard.fortinet.com/psirt/FG-IR-26-121 Heap-based buffer overflow in oftpd daemon Reference>