CVE-2021-44168
Fortinet / FortiOS
Added 2021-12-10
Due 2021-12-24
Fortinet FortiOS Arbitrary File Download
Fortinet FortiOS "execute restore src-vis" downloads code without integrity checking, allowing an attacker to arbitrarily download files.
Required action
Apply updates per vendor instructions.
Notes: https://nvd.nist.gov/vuln/detail/CVE-2021-44168
Metadata
| Added to KEV | 2021-12-10 |
| Remediation due | 2021-12-24 |
| Ransomware use | Unknown |
| CWEs | CWE-494 |
| Ingested | 2026-04-24 15:03:13 |
Cross-mesh regulatory overlay
If you're breached via this CVE, what disclosure laws and cyber regs fire? Asks LexiWorld and RegulatoryRadar via signed mesh.