An improper input validation vulnerability in the web server CGI facilities of FortiMail before 7.0.1 may allow an unauthenticated attacker to alter the environment of the underlying script interpreter via specifically crafted HTTP requests.

Related CVEs

CVE-2021-32586

Key Information

GHSA ID

GHSA-rmxw-r4jv-r5xm

Published

March 2, 2022 12:00 AM

Last Modified

March 17, 2022 12:04 AM

CVSS Score

9.0 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: August 11, 2025 6:32 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.