Security restrictions bypass in FortiOS
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2024-26015 |
| CWE-ID | CWE-682 |
| Exploitation vector | Local network |
| Public exploit | N/A |
| Vulnerable software Subscribe |
FortiProxy Hardware solutions / Routers & switches, VoIP, GSM, etc FortiOS Operating systems & Components / Operating system |
| Vendor | Fortinet, Inc |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Incorrect calculation
EUVDB-ID: #VU94004
Risk: Low
CVSSv3.1: 2.7 [CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]
CVE-ID: CVE-2024-26015
CWE-ID:
CWE-682 - Incorrect Calculation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to bypass implemented security restrictions.
The vulnerability exists due to incorrect parsing of IP addresses when handling zero characters. A remote attacker on the local network can send specially crafted requests and bypass the IP blocklist.
MitigationInstall updates from vendor's website.
Vulnerable software versionsFortiProxy: 7.0.0 - 7.4.3
FortiOS: 7.0.0 - 7.4.3
CPE2.3- cpe:2.3:h:fortinet:fortiproxy:7.4.3:*:*:*:*:*:*:*
- cpe:2.3:h:fortinet:fortiproxy:7.0.18:*:*:*:*:*:*:*
- cpe:2.3:h:fortinet:fortiproxy:7.2.10:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:7.0.15:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:7.2.8:*:*:*:*:*:*:*
- cpe:2.3:o:fortinet:fortios:7.4.3:*:*:*:*:*:*:*
http://fortiguard.fortinet.com/psirt/FG-IR-23-446
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
