VDB

CVE-2024-31496

CVE-2024-31496 PUBLISHED

Es besteht eine Schwachstelle in Fortinet FortiAnalyzer und Fortinet FortiManager aufgrund eines Stack-Based Buffer Overflow-Problems im CLI. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um durch speziell gestaltete Befehle über die CLI beliebigen Code auszuführen.

EPSS 0.07% · 22.3th percentile

Risk Scores

EPSS Score
0.07%
22.3th percentile

Affected Products

VendorProductVersions
FortinetFortinet FortiManager <7.0.13
FortinetFortinet FortiManager <7.2.6
FortinetFortinet FortiAnalyzer <6.4.15
FortinetFortinet FortiManager <6.4.15
FortinetFortinet FortiAnalyzer <7.4.3
FortinetFortinet FortiAnalyzer BigData <7.2.6
FortinetFortinet FortiAnalyzer BigData <7.2.7
FortinetFortinet FortiManager <7.4.3
FortinetFortinet FortiAnalyzer <7.0.13
FortinetFortinet FortiAnalyzer BigData <7.2.8
FortinetFortinet FortiAnalyzer BigData <7.4.1
FortinetFortinet FortiAnalyzer <7.2.6

Timeline

  • Nov 12, 2024 Coalition ESS Score
  • Nov 12, 2024 CVE Published
  • Nov 12, 2024 CVE Updated
  • Nov 13, 2024 EPSS Score
  • Nov 13, 2024 Coalition ESS Score
  • Nov 13, 2024 Coalition ESS Score
  • Nov 13, 2024 PoC Published
  • Nov 13, 2024 PoC Published
  • Dec 2, 2024 EPSS Score
  • Dec 19, 2024 EPSS Score
  • Jan 6, 2025 EPSS Score
  • Jan 24, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›