Primary

Context

Fortinet FortiOS Heap-Based Buffer Overflow Vulnerability in cw_stad Daemon Allowing Privilege Escalation

Vulnerability

Patched

A heap-based buffer overflow vulnerability has been identified in Fortinet FortiOS versions 7.6.0 through 7.6.2, 7.4.0 through 7.4.7, and 7.2.4 through 7.2.11. This vulnerability allows an authenticated attacker to escalate privileges by executing arbitrary code or commands via specially crafted CLI commands. The issue arises in the cw_stad daemon, particularly when certain Fortinet models are configured as wireless clients.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation by allowing an attacker to execute arbitrary code or commands with elevated rights.

Remediation

Users are advised to upgrade Fortinet FortiOS to version 7.6.3 or above, 7.4.8 or above, or 7.2.12 or above, depending on their current version. Follow the recommended upgrade path using Fortinet's upgrade tool.

Added: Jul 15, 2025, 9:17 AM

Updated: Jul 15, 2025, 9:17 AM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fortinet FortiOS Heap-Based Buffer Overflow Vulnerability in cw_stad Daemon Allowing Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

Fortinet FortiOS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating