CVE-2021-32598: 
Fortinet FortiManager vulnerability analysis and mitigation

CVE-2021-32598 is an HTTP Response Splitting vulnerability affecting FortiManager and FortiAnalyzer GUI versions 7.0.0, 6.4.6 and below, 6.2.8 and below, 6.0.11 and below, and 5.6.11 and below. The vulnerability was disclosed on August 3, 2021, with a CVSS v3.1 score of 3.8, indicating a low severity level (Fortiguard PSIRT, NVD).

The vulnerability is characterized by an improper neutralization of CRLF sequences in HTTP headers, which can lead to HTTP Response Splitting attacks. The CVSS metrics indicate that this is a network-accessible vulnerability requiring low attack complexity and low privileges, with no user interaction needed. The scope is unchanged, and the impact primarily affects integrity with a low severity rating (Rapid7).

When exploited, this vulnerability allows an authenticated remote attacker to perform an HTTP request splitting attack, potentially gaining control over the remaining headers and body of the response. This could lead to unauthorized manipulation of HTTP responses (Fortiguard PSIRT).

Fortinet has released patches to address this vulnerability. Users are advised to upgrade to FortiManager and FortiAnalyzer versions 7.0.1 or later versions of their respective branches (CERT-FR).