2024: Critical Vulnerabilities in Fortinet FortiOS You Need to Know
2024: Critical Vulnerabilities in Fortinet FortiOS You Need to Know
According to Fortinet, CVE-2024-21762 is an SSL VPN out-of-bounds write vulnerability that might give an unauthenticated remote threat actor the ability to execute any code and commands via a specially constructed HTTP request. Note 2. According to Fortinet, there may have been wild usage of CVE-2024-21762. Through carefully constructed HTTP requests, an unauthenticated remote attacker may be able to execute any code or command due to an out-of-bounds write vulnerability [CWE-787] in FortiOS.
Many nation-state threat actors, such as a group affiliated with the Iranian Islamic Revolutionary Guard Corps (IRGC), Russian state-sponsored threat actors, and ransomware groups like Conti and affiliates connected to other ransomware groups, have taken use of vulnerabilities in Fortinet devices.
Over the past few years, the Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with other domestic and foreign authorities, has released lists of the top vulnerabilities that are frequently exploited, and Fortinet vulnerabilities have been included in these lists.
The FortiOS FortiGate to FortiManager (fgfmd) protocol has a format string problem, which is the source of a second major vulnerability (CVE-2024-23113). Through carefully constructed requests, the vulnerability might enable a remote, unauthenticated threat actor to execute any code or commands. There is no indication from Fortinet that this vulnerability has been used maliciously.
The Fortinet advice states that CVE-2024-21762 has been resolved in versions of FortiOS. Customers of Fortinet should update to a fixed version right now, without holding off until the next scheduled patch cycle.
The advice advises consumers to disable the SSL VPN as a workaround, adding a disclaimer that deactivating webmode is not a legitimate remedy. Please refer to Fortinet's advice for the most recent updates and additional information.
Continue Reading...
