CVE-2024-23113

critical

Description

A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, FortiPAM versions 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiSwitchManager versions 7.2.0 through 7.2.3, 7.0.0 through 7.0.3 allows attacker to execute unauthorized code or commands via specially crafted packets.

References

https://www.infosecurity-magazine.com/news/watchtowr-new-vulnerability/

https://thehackernews.com/2024/10/cisa-adds-sciencelogic-sl1.html

https://www.hipaajournal.com/exploitation-fortinet-veeam-backup-replication-vulnerabilities/

https://www.theregister.com/2024/10/14/fortinet_vulnerability/

https://thehackernews.com/2024/10/cisa-warns-of-critical-fortinet-flaw-as.html

https://securityaffairs.com/169619/security/u-s-cisa-adds-ivanti-csa-and-fortinet-bugs-to-its-known-exploited-vulnerabilities-catalog.html

https://www.bleepingcomputer.com/news/security/cisa-says-critical-fortinet-rce-flaw-now-exploited-in-attacks/

https://www.tenable.com/blog/verizon-2025-dbir-tenable-research-collaboration

https://www.tenable.com/blog/cve-2024-21762-critical-fortinet-fortios-out-of-bound-write-ssl-vpn-vulnerability

https://fortiguard.com/psirt/FG-IR-24-029

Details

Source: Mitre, NVD

Published: 2024-02-15

Updated: 2024-11-29

Named Vulnerability: FortiJumpNamed Vulnerability: FortiGate SSL-VPNKnown Exploited Vulnerability (KEV)

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.45616