VDB

CNVD-2024-26328

CNVD-2024-26328 PUBLISHED CVSS 9.199999809265137 CRITICAL

Fortinet FortiOS是美国飞塔(Fortinet)公司的一套专用于FortiGate网络安全平台上的安全操作系统。该系统为用户提供防火墙、防病毒、IPSec/SSLVPN、Web内容过滤和反垃圾邮件等多种安全功能。 Fortinet FortiOS存在安全漏洞,该漏洞源于基于堆的缓冲区溢出漏洞。未经身份认证的攻击者可利用该漏洞远程执行代码。

Risk Scores

CVSS v3.1
9.199999809265137
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:X/RC:R

Affected Products

VendorProductVersions
FortinetFortiOS-6K7K6.2.9, 6.4.12, 6.4.10
FortinetFortiOS7.0.0, 6.4.0, 6.2.0
FortinetFortiProxy7.0.0, 2.0.0, 1.2.0

Timeline

  • Oct 2, 2017 CVE Published
  • Jun 13, 2023 PoC Published
  • Jun 13, 2023 PoC Published
  • Jun 13, 2023 PoC Published
  • Jun 14, 2023 PoC Published
  • Oct 15, 2024 PoC Published
  • Nov 20, 2024 PoC Published
  • Dec 24, 2024 PoC Published
  • Feb 23, 2025 PoC Published
  • Apr 11, 2025 PoC Published
  • Apr 12, 2025 PoC Published
  • Apr 13, 2025 PoC Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›