VDB
CVE-2024-21761
CVE-2024-21761
PUBLISHED
CVSS 3.9000000953674316 LOW
De multiples vulnérabilités ont été découvertes dans <span class="textit">les produits Fortinet</span>. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un contournement de la politique de sécurité et une élévation de privilèges.
EPSS 0.24% · 47.1th percentile
Risk Scores
CVSS v3.1
3.9000000953674316
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C
EPSS Score
0.24%
47.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| fortinet | fortiportal | 7.2.0, 7.0.0 |
| Fortinet | FortiProxy | |
| Fortinet | FortiManager | |
| Fortinet | FortiPortal | 7.2.0, 7.0.0 |
| Fortinet | FortiAnalyzer | |
| Fortinet | FortiClientEMS | |
| Fortinet | FortiOS | |
| fortinet | fortiportal | 7.0.0, 7.2.0 |
Timeline
- Mar 12, 2024 CVE Published
- Mar 12, 2024 PoC Published
- Mar 12, 2024 PoC Published
- Mar 13, 2024 EPSS Score
- Apr 8, 2024 EPSS Score
- May 4, 2024 EPSS Score
- May 30, 2024 EPSS Score
- Jun 25, 2024 EPSS Score
- Jul 21, 2024 EPSS Score
- Aug 16, 2024 EPSS Score
- Sep 11, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
References
- https://www.fortiguard.com/psirt/FG-IR-24-007 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-304 advisory
- https://www.fortiguard.com/psirt/FG-IR-24-016 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-328 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-424 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-390 advisory
- https://www.fortiguard.com/psirt/FG-IR-23-103 advisory
- https://www.fortiguard.com/psirt/FG-IR-24-013 advisory
- https://fortiguard.com/psirt/FG-IR-24-016 url
- https://nvd.nist.gov/vuln/detail/CVE-2024-21761 advisory