wid-sec-w-2026-0683 · Published 2026-03-10 · View on BSI CERT-Bund ↗

Fortinet FortiSwitchAXFixed: Multiple Vulnerabilities allow Code execution

CVSS 8.8 HIGH

Risk Summary

A buffer copy without checking size of input ('classic buffer overflow') vulnerability in Fortinet FortiSwitchAXFixed 1.0.0 through 1.0.1 may allow an unauthenticated attacker within the same adjacent network to execute unauthorized code or commands on the device via sending a crafted LLDP packet.

CVEs (2)

CVE-2026-22627 CVE-2026-22628

Affected Vendors

Fortinet

Affected Products (2)

Fortinet · FortiSwitch AXFixed <1.0.2

Fortinet · FortiSwitch AXFixed 1.0.2

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more