Lucene search

China National Vulnerability DatabaseCNVD-2024-13010

HistoryMar 13, 2024 - 12:00 a.m.

Formatting String Error Vulnerability in Multiple Fortinet Products

2024-03-1300:00:00

China National Vulnerability Database

www.cnvd.org.cn

fortinet

fortios

fortigate

fortiproxy

fortipam

formatting string error

vulnerability

cyberattacks

privileged access control

7.9 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform.Fortinet FortiProxy is a secure network proxy that protects employees from cyberattacks by combining a variety of detection technologies, such as Web filtering, DNS filtering, DLP, anti-virus, intrusion prevention and advanced threat protection. Fortinet FortiPAM is a platform for privileged access control from Fortinet. A formatting string error vulnerability exists in multiple Fortinet products, which can be exploited by an attacker to execute arbitrary code or commands via a specially crafted request.

CPENameOperatorVersion
fortinet fortiproxy >=1.0.0，le1.0.7
fortinet fortiproxy >=1.1.0，le1.1.6
fortinet fortiproxy >=1.2.0，le1.2.13
fortinet fortiproxy >=2.0.0，le2.0.12
fortinet fortiproxy >=7.0.0，le7.0.10
fortinet fortios >=7.2.0，le7.2.4
fortinet fortiproxy >=7.2.0，le7.2.4
fortinet fortipam >=1.0.0，le1.0.3
fortinet fortios >=7.0.0，le7.0.11
fortinet fortios >=6.2.0，le6.2.14

Name	Operator	Version
fortinet fortiproxy >=1.0.0，	le	1.0.7
fortinet fortiproxy >=1.1.0，	le	1.1.6
fortinet fortiproxy >=1.2.0，	le	1.2.13
fortinet fortiproxy >=2.0.0，	le	2.0.12
fortinet fortiproxy >=7.0.0，	le	7.0.10
fortinet fortios >=7.2.0，	le	7.2.4
fortinet fortiproxy >=7.2.0，	le	7.2.4
fortinet fortipam >=1.0.0，	le	1.0.3
fortinet fortios >=7.0.0，	le	7.0.11
fortinet fortios >=6.2.0，	le	6.2.14

Rows per page:

1-10 of 121