Detections
Analytics
Fortinet FortiClient EMS 7.0.x < 7.0.11 / 7.2.x < 7.2.3 (FG-IR-24-007)
critical Nessus Plugin ID 192116
Language:
Synopsis
The remote host is missing a security update.Description
The version of Fortinet FortiClient EMS installed on the remote host is prior to 7.0.11 or 7.2.3. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-007 advisory.- A improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiClientEMS version 7.2.0 through 7.2.2, FortiClientEMS 7.0.1 through 7.0.10 allows attacker to execute unauthorized code or commands via specially crafted packets. (CVE-2023-48788)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Fortinet FortiClient EMS version 7.0.11 / 7.2.3 or later.See Also
Plugin Details
Severity: Critical
ID: 192116
File Name: fortinet_forticlient_ems_FG-IR-24-007.nasl
Version: 1.6
Type: local
Agent: windows
Family: Windows
Published: 3/14/2024
Updated: 4/25/2024
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.5
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2023-48788
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 9.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:fortinet:forticlient_enterprise_management_server
Required KB Items: installed_sw/Fortinet FortiClient EMS
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 3/12/2020
Vulnerability Publication Date: 3/12/2024
CISA Known Exploited Vulnerability Due Dates: 4/15/2024
Exploitable With
Metasploit (FortiNet FortiClient Endpoint Management Server FCTID SQLi to RCE)
Reference Information
CVE: CVE-2023-48788
IAVA: 2024-A-0182