#VU107250 Improper restriction of communication channel to intended endpoints in FortiOS - CVE-2024-50565

Cybersecurity Help s.r.o.

Published: 2025-04-09

Vulnerability identifier: #VU107250

Vulnerability risk: High

CVSSv4.0: 4.5 [CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2024-50565

CWE-ID: CWE-923

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
FortiOS
Operating systems & Components / Operating system

Vendor: Fortinet, Inc

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to missing certificate name verification for FGFM connection. A remote non-authenticated attacker can intercept the FGFM authentication request between the management device and the managed device and impersonate the management device (FortiCloud server or/and in certain conditions, FortiManager).

Successful exploitation of the vulnerability may allow an attacker to compromise the affected device.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

FortiOS: 6.2.0 - 6.2.16, 6.4.0 - 6.4.16, 7.0.0 - 7.0.15, 7.2.0 - 7.2.8, 7.4.0 - 7.4.4

External links
https://fortiguard.fortinet.com/psirt/FG-IR-24-046

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

MitM attack in FortiWeb

MitM attack in FortiVoice

MitM attack in FortiProxy

MitM attack in FortiManager

MitM attack in FortiAnalyzer

MitM attack in FortiOS