CVE-2021-44168 : Security Advisory and Response

A download of code without integrity check vulnerability in the "execute restore src-vis" command of FortiOS before 7.0.3 may allow a local authenticated attacker to download arbitrary files on the device via specially crafted update packages.

Understanding CVE-2021-44168

This CVE affects Fortinet FortiOS versions before 7.0.3, allowing a local authenticated attacker to download arbitrary files through a specific command.

What is CVE-2021-44168?

CVE-2021-44168 is a vulnerability in Fortinet FortiOS that permits a local authenticated attacker to download arbitrary files through crafted update packages due to a lack of integrity checks.

The Impact of CVE-2021-44168

The vulnerability has a CVSS base score of 3.3 (Low severity) and affects confidentiality and integrity, though it does not impact availability. An attacker can exploit this without advanced privileges.

Technical Details of CVE-2021-44168

This section dives into the specifics of the CVE.

Vulnerability Description

The vulnerability lies in the "execute restore src-vis" command of FortiOS, which allows the download of files without integrity verification, potentially leading to unauthorized access.

Affected Systems and Versions

Product: Fortinet FortiOS
Vendor: Fortinet
Vulnerable Versions: FortiOS before 7.0.3

Exploitation Mechanism

The vulnerability can be exploited by a local authenticated attacker through specially crafted update packages to perform unauthorized file downloads.

Mitigation and Prevention

To address CVE-2021-44168, consider the following steps.

Immediate Steps to Take

Implement the workaround provided by the vendor
Monitor for any unauthorized file downloads
Restrict access to vulnerable systems

Long-Term Security Practices

Regularly update FortiOS to secure versions
Conduct security training for personnel

Patching and Updates

Apply the latest security patches from Fortinet