Fortinet FortiSIEM Vulnerability Allows Attackers to Execute Unauthorized Code or Commands via API Requests

CVE-2024-23109

9.8CRITICAL

Key Information

Vendor: Fortinet
Status: FortiSIEM
Vendor: CVE Published:; 5 February 2024

Badges

📰 News Worthy

Summary

An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSIEM version 7.1.0 through 7.1.1 and 7.0.0 through 7.0.2 and 6.7.0 through 6.7.8 and 6.6.0 through 6.6.3 and 6.5.0 through 6.5.2 and 6.4.0 through 6.4.2 allows attacker to execute unauthorized code or commands via via crafted API requests.

Affected Version(s)

FortiSIEM = 7.1.1

FortiSIEM <= 7.0.2

FortiSIEM <= 6.7.8

News Articles

Red Hot Cyber

CVE-2024-23108 CVE-2024-23109

Le vulnerabilità critiche nei dispositivi FortiSIEM, macOS e Glibc

Le vulnerabilità scoperte possono avere conseguenze devastanti per la privacy e l'integrità dei dati, oltre che per la continuità operativa.

7 months ago

SC Media

CVE-2024-23108 CVE-2024-23109

New Fortinet RCE vulnerability potentially under exploitation

The FortiOS bug was patched a day after Volt Typhoon exploitation of past bugs was revealed.

10 months ago

Beeping Computers

CVE-2024-23108 CVE-2024-23109

Fortinet snafu: Critical FortiSIEM CVEs are duplicates, issued in error

It turns out that critical Fortinet FortiSIEM vulnerabilities tracked as CVE-2024-23108 and CVE-2024-23109 are not new and have been published this year in error.

10 months ago

Refferences

https://fortiguard.com/psirt/FG-IR-23-130

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

First article discovered by The Register
Feb 6, 2024
Vulnerability published
Feb 5, 2024
Vulnerability Reserved
Jan 11, 2024

Collectors

NVD DatabaseMitre Database6 News Article(s)