#VU94004 Incorrect calculation in FortiProxy and FortiOS - CVE-2024-26015

Cybersecurity Help s.r.o.

Published: 2024-07-09

Vulnerability identifier: #VU94004

Vulnerability risk: Low

CVSSv4.0: 0.6 [CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-26015

CWE-ID: CWE-682

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
FortiProxy
Hardware solutions / Routers & switches, VoIP, GSM, etc
FortiOS
Operating systems & Components / Operating system

Vendor: Fortinet, Inc

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to incorrect parsing of IP addresses when handling zero characters. A remote attacker on the local network can send specially crafted requests and bypass the IP blocklist.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

FortiProxy: 7.0.0 - 7.0.18, 7.2.0 - 7.2.10, 7.4.0 - 7.4.3

FortiOS: 7.0.0 - 7.0.15, 7.2.0 - 7.2.8, 7.4.0 - 7.4.3

External links
https://fortiguard.fortinet.com/psirt/FG-IR-23-446

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Security restrictions bypass in FortiOS