Buffer Overflow Vulnerability in Fortinet FortiSwitchAXFixed
CVE-2026-22627

7.7HIGH

Key Information:

Vendor: Fortinet
Status: Fortiswitchaxfixed
Vendor: CVE Published:; 10 March 2026

What is CVE-2026-22627?

A buffer overflow vulnerability in Fortinet's FortiSwitchAXFixed versions 1.0.0 to 1.0.1 allows unauthenticated attackers on the same network to execute unauthorized code. Exploitation occurs when a malicious actor sends a specially crafted LLDP packet to the device, posing a significant risk to network integrity and security. Ensure your systems are monitored and up-to-date to defend against potential threats.

Affected Version(s)

FortiSwitchAXFixed 1.0.0 <= 1.0.1

References

https://fortiguard.fortinet.com/psirt/FG-IR-26-086

CVSS V3.1

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 10, 2026
Vulnerability Reserved
Jan 8, 2026

CVE-2026-22627 Data

JSON