I’M UNDER A CYBER ATTACK

Alert

Alert 2024-49: Critical Remote Execution Vulnerability in Fortinet Products

CISA has issued an alert regarding the active exploitation of a critical remote code execution (RCE) vulnerability in Fortinet products, identified as CVE-2024-23113. This vulnerability affects several Fortinet solutions, including FortiOS, FortiPAM, FortiProxy, and FortiWeb.

The flaw is caused by a format string issue in the fgfmd daemon of FortiOS, which could allow an unauthenticated remote attacker to execute arbitrary commands or code on the affected system through crafted requests. The severity of the vulnerability is reflected in its CVSS score of 9.8, classifying it as critical.

According to Shodan data, there are over 15,000 active Fortinet devices in Mexico providing various layers of security in networks and applications.

To mitigate the CVE-2024-23113 vulnerability in Fortinet products, the solution is to update to the patched versions. Fortinet has released updates that address this vulnerability. For more information, visit the following link: https://support.fortinet.com/

Download PDF

WE’RE HERE TO HELP

Are you under a cyber attack?

Report it here

get the latest alerts in your inbox

Subscribe to our newsletter

We are a a group of highly trained professionals based in R&D with advanced technical knowledge and experience in the detection, analysis, containment, and recovery of security incidents.

We are a CSIRT, we are Cybolt.

I’M UNDER A CYBER ATTACK

Explore

Services

Stay updated

© 2024. Beacon Lab CSIRT, Privacy Policy

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.