CVE-2026-22627 — HIGH (8.8)

Q: How severe is CVE-2026-22627?

CVE-2026-22627 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2026-22627?

Check the references section above for vendor advisories and patch information. Affected products include: Fortinet Fortiswitchaxfixed.

Vulnerability Description

A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet FortiSwitchAXFixed 1.0.0 through 1.0.1 may allow an unauthenticated attacker within the same adjacent network to execute unauthorized code or commands on the device via sending a crafted LLDP packet.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Fortinet	Fortiswitchaxfixed	>= 1.0.0, < 1.0.2

Related Weaknesses (CWE)

CWE-120

References

https://fortiguard.fortinet.com/psirt/FG-IR-26-086Vendor Advisory

FAQ

What is CVE-2026-22627?

CVE-2026-22627 is a vulnerability with a CVSS score of 8.8 (HIGH). A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet FortiSwitchAXFixed 1.0.0 through 1.0.1 may allow an unauthenticated attacker within the same adjacent...

How severe is CVE-2026-22627?

CVE-2026-22627 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-22627?

Check the references section above for vendor advisories and patch information. Affected products include: Fortinet Fortiswitchaxfixed.