VDB
WID-SEC-W-2024-3260
WID-SEC-W-2024-3260
PUBLISHED
FortiManager Security Management Appliances ermöglicht die Verwaltung von Fortinet Network Security Geräten.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fortinet FortiManager <7.4.5 | ||
| Fortinet FortiManager <7.0.13 | ||
| Fortinet FortiManager 6.2.13 | ||
| Fortinet FortiManager <6.4.15 | ||
| Fortinet FortiManager 7.6.1 | ||
| Fortinet FortiManager 7.2.8 | ||
| Fortinet FortiManager 7.0.13 | ||
| Fortinet FortiManager 6.4.15 | ||
| Fortinet FortiManager <6.2.13 | ||
| Fortinet FortiManager <7.2.8 | ||
| Fortinet FortiManager 7.4.5 | ||
| Fortinet FortiManager <7.6.1 |
Exploit Intelligence
- PoC for CVE-2024-47575 (github-poc-repo)
- PoC for CVE-2024-47575 (github-poc)
- CVE POC Exploit (github-poc)
- Fortinet Fortimanager Unauthenticated Remote Code Execution AKA FortiJump CVE-2024-47575 (github-poc)
- https://fortiguard.fortinet.com/psirt/FG-IR-24-423 (circl)
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3260.json (circl)
- https://doublepulsar.com/burning-zero-days-fortijump-fortimanager-vulnerability-used-by-nation-state-in-espionage-via-msps-c79abec59773 (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3260 (circl)
- index.html (github-poc)
- index.html (github-poc)
…and 5 more exploits
Timeline
- Oct 22, 2024 CVE Published
- Oct 23, 2024 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3260.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3260 advisory
- https://doublepulsar.com/burning-zero-days-fortijump-fortimanager-vulnerability-used-by-nation-state-in-espionage-via-msps-c79abec59773 url
- https://fortiguard.fortinet.com/psirt/FG-IR-24-423 url