← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-44168 — Actively Exploited: FortiOS (Fortinet)

Fortinet FortiOS "execute restore src-vis" downloads code without integrity checking, allowing an attacker to arbitrarily download files.

CVE IDCVE-2021-44168
VendorFortinet
ProductFortiOS
Vulnerability nameFortinet FortiOS Arbitrary File Download
Date added2021-12-10
Remediation due2021-12-24
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionFortinet FortiOS "execute restore src-vis" downloads code without integrity checking, allowing an attacker to arbitrarily download files.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →