CVE-2024-32115 — Vulnetix

CVE-2024-32115 PUBLISHED

Es existiert eine Schwachstelle in Fortinet FortiManager. Hierbei handelt es sich um ein Path Traversal Problem in der Administrationsschnittstelle. Ein entfernter, authentisierter Angreifer mit erhöhten Rechten kann diese Schwachstelle ausnutzen, um Dateien aus dem zugrunde liegenden Dateisystem über manipulierte HTTP- oder HTTPS-Anfragen zu löschen.

EPSS 0.71% · 72.7th percentile

Risk Scores

EPSS Score

0.71%

72.7th percentile

Affected Products

Vendor	Product	Versions
Fortinet	Fortinet FortiManager <7.2.4
Fortinet	Fortinet FortiManager <7.0.13
Fortinet	Fortinet FortiManager <7.4.1
Fortinet	Fortinet FortiManager <7.4.3
Fortinet	Fortinet FortiManager <7.0.9
Fortinet	Fortinet FortiManager <7.2.6

Exploit Intelligence

…and 64 more exploits

Timeline

Sep 28, 2023 PoC Published
Sep 29, 2023 PoC Published
Oct 2, 2023 PoC Published
Oct 2, 2023 PoC Published
Oct 3, 2023 PoC Published
Oct 5, 2023 PoC Published
Dec 24, 2024 PoC Published
Jan 14, 2025 CVE Published
Jan 15, 2025 EPSS Score
Jan 31, 2025 EPSS Score
Feb 15, 2025 EPSS Score
Feb 18, 2025 Coalition ESS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0087.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0087 advisory
https://www.fortiguard.com/psirt/FG-IR-24-097 advisory
https://www.fortiguard.com/psirt/FG-IR-24-135 advisory
https://www.fortiguard.com/psirt/FG-IR-24-222 advisory
https://www.fortiguard.com/psirt/FG-IR-24-239 advisory
https://www.fortiguard.com/psirt/FG-IR-24-463 advisory

Open in Interactive Console →