cvelistv5 - cve-2024-36509

CVE-2024-36509 (GCVE-0-2024-36509)

Vulnerability from cvelistv5 – Published: 2024-11-12 18:53 – Updated: 2024-11-12 20:40

Summary

An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiWeb version 7.6.0, version 7.4.3 and below, version 7.2.10 and below, version 7.0.10 and below, version 6.3.23 and below may allow an authenticated attacker to access the encrypted passwords of other administrators via the "Log Access Event" logs page.

Severity ?

3.8 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N/E:P/RL:U/RC:R

CWE

CWE-497 - Information disclosure

Assigner

fortinet

References

URL

Tags

https://fortiguard.fortinet.com/psirt/FG-IR-24-180

Impacted products

	Vendor	Product	Version
	Fortinet	FortiWeb	Affected: 7.6.0 Affected: 7.4.0 , ≤ 7.4.3 (semver) Affected: 7.2.0 , ≤ 7.2.10 (semver) Affected: 7.0.0 , ≤ 7.0.10 (semver) Affected: 6.3.0 , ≤ 6.3.23 (semver)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-36509",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-12T20:40:06.803621Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-12T20:40:18.997Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [],
          "defaultStatus": "unaffected",
          "product": "FortiWeb",
          "vendor": "Fortinet",
          "versions": [
            {
              "status": "affected",
              "version": "7.6.0"
            },
            {
              "lessThanOrEqual": "7.4.3",
              "status": "affected",
              "version": "7.4.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.2.10",
              "status": "affected",
              "version": "7.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.10",
              "status": "affected",
              "version": "7.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.3.23",
              "status": "affected",
              "version": "6.3.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiWeb version 7.6.0, version 7.4.3 and below, version 7.2.10 and below, version 7.0.10 and below, version 6.3.23 and below may allow an authenticated attacker to access the encrypted passwords of other administrators via the \"Log Access Event\" logs page."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 3.8,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N/E:P/RL:U/RC:R",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-497",
              "description": "Information disclosure",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-12T18:53:57.238Z",
        "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "shortName": "fortinet"
      },
      "references": [
        {
          "name": "https://fortiguard.fortinet.com/psirt/FG-IR-24-180",
          "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-180"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Please upgrade to FortiWeb version 7.6.1 or above \nPlease upgrade to FortiWeb version 7.4.4 or above"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
    "assignerShortName": "fortinet",
    "cveId": "CVE-2024-36509",
    "datePublished": "2024-11-12T18:53:57.238Z",
    "dateReserved": "2024-05-29T08:44:50.760Z",
    "dateUpdated": "2024-11-12T20:40:18.997Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.3.0\", \"versionEndExcluding\": \"7.4.4\", \"matchCriteriaId\": \"7B0C24E1-3735-4117-8FA1-FB20D23AED9F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:fortinet:fortiweb:7.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"28B43375-DA74-4C5F-BAEE-39F312EEF51F\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiWeb version 7.6.0, version 7.4.3 and below, version 7.2.10 and below, version 7.0.10 and below, version 6.3.23 and below may allow an authenticated attacker to access the encrypted passwords of other administrators via the \\\"Log Access Event\\\" logs page.\"}, {\"lang\": \"es\", \"value\": \"Una exposici\\u00f3n de informaci\\u00f3n confidencial del sistema a una vulnerabilidad de esfera de control no autorizada [CWE-497] en FortiWeb versi\\u00f3n 7.6.0, versi\\u00f3n 7.4.3 y anteriores, versi\\u00f3n 7.2.10 y anteriores, versi\\u00f3n 7.0.10 y anteriores, versi\\u00f3n 6.3.23 y anteriores puede permitir que un atacante autenticado acceda a las contrase\\u00f1as cifradas de otros administradores a trav\\u00e9s de la p\\u00e1gina de registros \\\"Evento de acceso al registro\\\".\"}]",
      "id": "CVE-2024-36509",
      "lastModified": "2024-11-14T20:33:44.727",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"psirt@fortinet.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N\", \"baseScore\": 4.2, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 0.6, \"impactScore\": 3.6}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 4.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 3.6}]}",
      "published": "2024-11-12T19:15:10.440",
      "references": "[{\"url\": \"https://fortiguard.fortinet.com/psirt/FG-IR-24-180\", \"source\": \"psirt@fortinet.com\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "psirt@fortinet.com",
      "vulnStatus": "Analyzed",
      "weaknesses": "[{\"source\": \"psirt@fortinet.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-497\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-36509\",\"sourceIdentifier\":\"psirt@fortinet.com\",\"published\":\"2024-11-12T19:15:10.440\",\"lastModified\":\"2024-11-14T20:33:44.727\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiWeb version 7.6.0, version 7.4.3 and below, version 7.2.10 and below, version 7.0.10 and below, version 6.3.23 and below may allow an authenticated attacker to access the encrypted passwords of other administrators via the \\\"Log Access Event\\\" logs page.\"},{\"lang\":\"es\",\"value\":\"Una exposici\u00f3n de informaci\u00f3n confidencial del sistema a una vulnerabilidad de esfera de control no autorizada [CWE-497] en FortiWeb versi\u00f3n 7.6.0, versi\u00f3n 7.4.3 y anteriores, versi\u00f3n 7.2.10 y anteriores, versi\u00f3n 7.0.10 y anteriores, versi\u00f3n 6.3.23 y anteriores puede permitir que un atacante autenticado acceda a las contrase\u00f1as cifradas de otros administradores a trav\u00e9s de la p\u00e1gina de registros \\\"Evento de acceso al registro\\\".\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@fortinet.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N\",\"baseScore\":4.2,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":0.6,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":4.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":0.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"psirt@fortinet.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-497\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.3.0\",\"versionEndExcluding\":\"7.4.4\",\"matchCriteriaId\":\"7B0C24E1-3735-4117-8FA1-FB20D23AED9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:fortinet:fortiweb:7.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28B43375-DA74-4C5F-BAEE-39F312EEF51F\"}]}]}],\"references\":[{\"url\":\"https://fortiguard.fortinet.com/psirt/FG-IR-24-180\",\"source\":\"psirt@fortinet.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-36509\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-12T20:40:06.803621Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-12T20:40:13.352Z\"}}], \"cna\": {\"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 3.8, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"LOW\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N/E:P/RL:U/RC:R\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [], \"vendor\": \"Fortinet\", \"product\": \"FortiWeb\", \"versions\": [{\"status\": \"affected\", \"version\": \"7.6.0\"}, {\"status\": \"affected\", \"version\": \"7.4.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"7.4.3\"}, {\"status\": \"affected\", \"version\": \"7.2.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"7.2.10\"}, {\"status\": \"affected\", \"version\": \"7.0.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"7.0.10\"}, {\"status\": \"affected\", \"version\": \"6.3.0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.3.23\"}], \"defaultStatus\": \"unaffected\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"Please upgrade to FortiWeb version 7.6.1 or above \\nPlease upgrade to FortiWeb version 7.4.4 or above\"}], \"references\": [{\"url\": \"https://fortiguard.fortinet.com/psirt/FG-IR-24-180\", \"name\": \"https://fortiguard.fortinet.com/psirt/FG-IR-24-180\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiWeb version 7.6.0, version 7.4.3 and below, version 7.2.10 and below, version 7.0.10 and below, version 6.3.23 and below may allow an authenticated attacker to access the encrypted passwords of other administrators via the \\\"Log Access Event\\\" logs page.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-497\", \"description\": \"Information disclosure\"}]}], \"providerMetadata\": {\"orgId\": \"6abe59d8-c742-4dff-8ce8-9b0ca1073da8\", \"shortName\": \"fortinet\", \"dateUpdated\": \"2024-11-12T18:53:57.238Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-36509\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-12T20:40:18.997Z\", \"dateReserved\": \"2024-05-29T08:44:50.760Z\", \"assignerOrgId\": \"6abe59d8-c742-4dff-8ce8-9b0ca1073da8\", \"datePublished\": \"2024-11-12T18:53:57.238Z\", \"assignerShortName\": \"fortinet\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GHSA-CGPX-R229-QPVJ

Vulnerability from github – Published: 2024-11-12 21:30 – Updated: 2024-11-12 21:30

Details

Severity ?

4.2 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-36509"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-497"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-11-12T19:15:10Z",
    "severity": "MODERATE"
  },
  "details": "An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiWeb version 7.6.0, version 7.4.3 and below, version 7.2.10 and below, version 7.0.10 and below, version 6.3.23 and below may allow an authenticated attacker to access the encrypted passwords of other administrators via the \"Log Access Event\" logs page.",
  "id": "GHSA-cgpx-r229-qpvj",
  "modified": "2024-11-12T21:30:52Z",
  "published": "2024-11-12T21:30:52Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36509"
    },
    {
      "type": "WEB",
      "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-180"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N",
      "type": "CVSS_V3"
    }
  ]
}

WID-SEC-W-2024-3441

Vulnerability from csaf_certbund - Published: 2024-11-12 23:00 - Updated: 2024-11-12 23:00

Summary

Fortinet FortiWeb: Schwachstelle ermöglicht Offenlegung von Informationen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

FortiWeb ist eine Web Application Firewall von Fortinet.

Angriff

Ein lokaler Angreifer kann eine Schwachstelle in Fortinet FortiWeb ausnutzen, um Informationen offenzulegen.

Betroffene Betriebssysteme

- Sonstiges

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "niedrig"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "FortiWeb ist eine Web Application Firewall von Fortinet.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann eine Schwachstelle in Fortinet FortiWeb ausnutzen, um Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-3441 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3441.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-3441 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3441"
      },
      {
        "category": "external",
        "summary": "FortiGuard PSIRT Advisory FG-IR-24-180 vom 2024-11-12",
        "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-180"
      }
    ],
    "source_lang": "en-US",
    "title": "Fortinet FortiWeb: Schwachstelle erm\u00f6glicht Offenlegung von Informationen",
    "tracking": {
      "current_release_date": "2024-11-12T23:00:00.000+00:00",
      "generator": {
        "date": "2024-11-13T11:47:52.180+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.8"
        }
      },
      "id": "WID-SEC-W-2024-3441",
      "initial_release_date": "2024-11-12T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-11-12T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.6.1",
                "product": {
                  "name": "Fortinet FortiWeb \u003c7.6.1",
                  "product_id": "T038986"
                }
              },
              {
                "category": "product_version",
                "name": "7.6.1",
                "product": {
                  "name": "Fortinet FortiWeb 7.6.1",
                  "product_id": "T038986-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:fortinet:fortiweb:7.6.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c7.4.4",
                "product": {
                  "name": "Fortinet FortiWeb \u003c7.4.4",
                  "product_id": "T038987"
                }
              },
              {
                "category": "product_version",
                "name": "7.4.4",
                "product": {
                  "name": "Fortinet FortiWeb 7.4.4",
                  "product_id": "T038987-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:fortinet:fortiweb:7.4.4"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FortiWeb"
          }
        ],
        "category": "vendor",
        "name": "Fortinet"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-36509",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Fortinet FortiWeb. Es ist m\u00f6glich \u00fcber die Protokollseite \"Log Access Event\" auf die verschl\u00fcsselten Passw\u00f6rter anderer Administratoren zuzugreifen. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um Informationen offenzulegen. Zur erfolgreichen Ausnutzung ist eine Benutzeraktion erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T038987",
          "T038986"
        ]
      },
      "release_date": "2024-11-12T23:00:00.000+00:00",
      "title": "CVE-2024-36509"
    }
  ]
}

CERTFR-2024-AVI-0979

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Fortinet	FortiProxy	FortiProxy versions 7.4.x antérieures à 7.4.4
Fortinet	FortiAnalyzer	FortiAnalyzer-BigData versions antérieures à 7.4.1
Fortinet	FortiPortal	FortiPortal versions antérieures à 7.0.9
Fortinet	FortiWeb	FortiWeb versions antérieures à 7.4.4
Fortinet	FortiClient	FortiClientWindows versions 7.4.x antérieures à 7.4.1
Fortinet	FortiManager	FortiManager Cloud toutes versions
Fortinet	FortiProxy	FortiProxy versions antérieures à 7.2.10
Fortinet	FortiAnalyzer	FortiAnalyzer Cloud versions antérieures à 7.2.7
Fortinet	FortiPAM	FortiPAM versions antérieures à 1.3
Fortinet	FortiSwitchManager	FortiSwitchManager versions 7.2.x antérieures à 7.2.4
Fortinet	FortiAnalyzer	FortiAnalyzer versions antérieures à 7.4.3
Fortinet	FortiAnalyzer	FortiAnalyzer Cloud versions 7.4.x antérieures à 7.4.3
Fortinet	FortiPortal	FortiPortal versions 7.4.x antérieures à 7.4.1
Fortinet	FortiManager	FortiManager versions antérieures à 7.4.3
Fortinet	FortiSwitchManager	FortiSwitchManager versions 7.0.x antérieures à 7.0.4
Fortinet	FortiOS	FortiOS versions 7.4.x antérieures à 7.4.4
Fortinet	FortiClient	FortiClientWindows versions antérieures à 7.0.13
Fortinet	FortiClient	FortiClientMac versions 7.4.x antérieures à 7.4.1
Fortinet	FortiClient	FortiClientWindows versions 7.2.x antérieures à 7.2.5
Fortinet	FortiClient	FortiClientMac versions 7.2.x antérieures à 7.2.5
Fortinet	FortiOS	FortiOS versions antérieures à 7.0.15
Fortinet	FortiOS	FortiOS versions 7.2.x antérieures à 7.2.9
Fortinet	FortiWeb	FortiWeb versions 7.6.x antérieures à 7.6.1

References

Title

Publication Time

Tags

Bulletin de sécurité Fortinet FG-IR-23-396	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-022	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-115	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-033	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-116	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-180	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-199	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-475	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-144	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-125	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-179	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-099	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-267	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-22-155	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-205	2024-11-13	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-032	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-448	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-098	2024-11-12	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "FortiProxy versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiProxy",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer-BigData versions ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPortal versions ant\u00e9rieures \u00e0 7.0.9",
      "product": {
        "name": "FortiPortal",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiWeb versions ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiWeb",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiManager Cloud toutes versions",
      "product": {
        "name": "FortiManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiProxy versions ant\u00e9rieures \u00e0 7.2.10",
      "product": {
        "name": "FortiProxy",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer Cloud versions ant\u00e9rieures \u00e0 7.2.7",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPAM versions ant\u00e9rieures \u00e0 1.3",
      "product": {
        "name": "FortiPAM",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiSwitchManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.4",
      "product": {
        "name": "FortiSwitchManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer versions ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer Cloud versions 7.4.x ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPortal versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiPortal",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiManager versions ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiSwitchManager versions 7.0.x ant\u00e9rieures \u00e0 7.0.4",
      "product": {
        "name": "FortiSwitchManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions ant\u00e9rieures \u00e0 7.0.13",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientMac versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions 7.2.x ant\u00e9rieures \u00e0 7.2.5",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientMac versions 7.2.x ant\u00e9rieures \u00e0 7.2.5",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions ant\u00e9rieures \u00e0 7.0.15",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions 7.2.x ant\u00e9rieures \u00e0 7.2.9",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiWeb versions 7.6.x ant\u00e9rieures \u00e0 7.6.1",
      "product": {
        "name": "FortiWeb",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-36509",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36509"
    },
    {
      "name": "CVE-2023-47543",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-47543"
    },
    {
      "name": "CVE-2024-26011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26011"
    },
    {
      "name": "CVE-2024-33505",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33505"
    },
    {
      "name": "CVE-2023-50176",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50176"
    },
    {
      "name": "CVE-2024-40592",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40592"
    },
    {
      "name": "CVE-2024-31496",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-31496"
    },
    {
      "name": "CVE-2024-32117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32117"
    },
    {
      "name": "CVE-2023-44255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-44255"
    },
    {
      "name": "CVE-2024-36507",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36507"
    },
    {
      "name": "CVE-2024-36513",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36513"
    },
    {
      "name": "CVE-2024-47574",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47574"
    },
    {
      "name": "CVE-2024-23666",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23666"
    },
    {
      "name": "CVE-2024-40590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40590"
    },
    {
      "name": "CVE-2024-32116",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32116"
    },
    {
      "name": "CVE-2024-35274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-35274"
    },
    {
      "name": "CVE-2024-32118",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32118"
    },
    {
      "name": "CVE-2024-33510",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33510"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0979",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-11-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Fortinet. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Fortinet",
  "vendor_advisories": [
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-396",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-396"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-022",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-022"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-115",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-115"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-033",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-033"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-116",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-116"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-180",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-180"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-199",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-199"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-475",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-475"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-144",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-144"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-125",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-125"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-179",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-179"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-099",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-099"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-267",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-267"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-22-155",
      "url": "https://www.fortiguard.com/psirt/FG-IR-22-155"
    },
    {
      "published_at": "2024-11-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-205",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-205"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-032",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-032"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-448",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-448"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-098",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-098"
    }
  ]
}

CERTFR-2024-AVI-0979

Vulnerability from certfr_avis - Published: - Updated:

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Fortinet	FortiProxy	FortiProxy versions 7.4.x antérieures à 7.4.4
Fortinet	FortiAnalyzer	FortiAnalyzer-BigData versions antérieures à 7.4.1
Fortinet	FortiPortal	FortiPortal versions antérieures à 7.0.9
Fortinet	FortiWeb	FortiWeb versions antérieures à 7.4.4
Fortinet	FortiClient	FortiClientWindows versions 7.4.x antérieures à 7.4.1
Fortinet	FortiManager	FortiManager Cloud toutes versions
Fortinet	FortiProxy	FortiProxy versions antérieures à 7.2.10
Fortinet	FortiAnalyzer	FortiAnalyzer Cloud versions antérieures à 7.2.7
Fortinet	FortiPAM	FortiPAM versions antérieures à 1.3
Fortinet	FortiSwitchManager	FortiSwitchManager versions 7.2.x antérieures à 7.2.4
Fortinet	FortiAnalyzer	FortiAnalyzer versions antérieures à 7.4.3
Fortinet	FortiAnalyzer	FortiAnalyzer Cloud versions 7.4.x antérieures à 7.4.3
Fortinet	FortiPortal	FortiPortal versions 7.4.x antérieures à 7.4.1
Fortinet	FortiManager	FortiManager versions antérieures à 7.4.3
Fortinet	FortiSwitchManager	FortiSwitchManager versions 7.0.x antérieures à 7.0.4
Fortinet	FortiOS	FortiOS versions 7.4.x antérieures à 7.4.4
Fortinet	FortiClient	FortiClientWindows versions antérieures à 7.0.13
Fortinet	FortiClient	FortiClientMac versions 7.4.x antérieures à 7.4.1
Fortinet	FortiClient	FortiClientWindows versions 7.2.x antérieures à 7.2.5
Fortinet	FortiClient	FortiClientMac versions 7.2.x antérieures à 7.2.5
Fortinet	FortiOS	FortiOS versions antérieures à 7.0.15
Fortinet	FortiOS	FortiOS versions 7.2.x antérieures à 7.2.9
Fortinet	FortiWeb	FortiWeb versions 7.6.x antérieures à 7.6.1

References

Title

Publication Time

Tags

Bulletin de sécurité Fortinet FG-IR-23-396	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-022	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-115	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-033	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-116	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-180	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-199	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-475	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-144	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-125	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-179	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-099	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-267	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-22-155	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-205	2024-11-13	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-032	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-448	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-098	2024-11-12	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "FortiProxy versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiProxy",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer-BigData versions ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPortal versions ant\u00e9rieures \u00e0 7.0.9",
      "product": {
        "name": "FortiPortal",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiWeb versions ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiWeb",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiManager Cloud toutes versions",
      "product": {
        "name": "FortiManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiProxy versions ant\u00e9rieures \u00e0 7.2.10",
      "product": {
        "name": "FortiProxy",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer Cloud versions ant\u00e9rieures \u00e0 7.2.7",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPAM versions ant\u00e9rieures \u00e0 1.3",
      "product": {
        "name": "FortiPAM",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiSwitchManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.4",
      "product": {
        "name": "FortiSwitchManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer versions ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer Cloud versions 7.4.x ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPortal versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiPortal",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiManager versions ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiSwitchManager versions 7.0.x ant\u00e9rieures \u00e0 7.0.4",
      "product": {
        "name": "FortiSwitchManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions ant\u00e9rieures \u00e0 7.0.13",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientMac versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions 7.2.x ant\u00e9rieures \u00e0 7.2.5",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientMac versions 7.2.x ant\u00e9rieures \u00e0 7.2.5",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions ant\u00e9rieures \u00e0 7.0.15",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions 7.2.x ant\u00e9rieures \u00e0 7.2.9",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiWeb versions 7.6.x ant\u00e9rieures \u00e0 7.6.1",
      "product": {
        "name": "FortiWeb",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-36509",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36509"
    },
    {
      "name": "CVE-2023-47543",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-47543"
    },
    {
      "name": "CVE-2024-26011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26011"
    },
    {
      "name": "CVE-2024-33505",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33505"
    },
    {
      "name": "CVE-2023-50176",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50176"
    },
    {
      "name": "CVE-2024-40592",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40592"
    },
    {
      "name": "CVE-2024-31496",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-31496"
    },
    {
      "name": "CVE-2024-32117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32117"
    },
    {
      "name": "CVE-2023-44255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-44255"
    },
    {
      "name": "CVE-2024-36507",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36507"
    },
    {
      "name": "CVE-2024-36513",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36513"
    },
    {
      "name": "CVE-2024-47574",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47574"
    },
    {
      "name": "CVE-2024-23666",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23666"
    },
    {
      "name": "CVE-2024-40590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40590"
    },
    {
      "name": "CVE-2024-32116",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32116"
    },
    {
      "name": "CVE-2024-35274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-35274"
    },
    {
      "name": "CVE-2024-32118",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32118"
    },
    {
      "name": "CVE-2024-33510",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33510"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0979",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-11-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Fortinet. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Fortinet",
  "vendor_advisories": [
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-396",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-396"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-022",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-022"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-115",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-115"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-033",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-033"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-116",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-116"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-180",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-180"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-199",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-199"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-475",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-475"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-144",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-144"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-125",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-125"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-179",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-179"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-099",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-099"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-267",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-267"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-22-155",
      "url": "https://www.fortiguard.com/psirt/FG-IR-22-155"
    },
    {
      "published_at": "2024-11-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-205",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-205"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-032",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-032"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-448",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-448"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-098",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-098"
    }
  ]
}

FKIE_CVE-2024-36509

Vulnerability from fkie_nvd - Published: 2024-11-12 19:15 - Updated: 2024-11-14 20:33

Severity ?

4.2 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N
4.4 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Summary

References

	URL	Tags
	psirt@fortinet.com	https://fortiguard.fortinet.com/psirt/FG-IR-24-180	Vendor Advisory

Impacted products

	Vendor	Product	Version
	fortinet	fortiweb	*
	fortinet	fortiweb	7.6.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:fortinet:fortiweb:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7B0C24E1-3735-4117-8FA1-FB20D23AED9F",
              "versionEndExcluding": "7.4.4",
              "versionStartIncluding": "6.3.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:fortinet:fortiweb:7.6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "28B43375-DA74-4C5F-BAEE-39F312EEF51F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiWeb version 7.6.0, version 7.4.3 and below, version 7.2.10 and below, version 7.0.10 and below, version 6.3.23 and below may allow an authenticated attacker to access the encrypted passwords of other administrators via the \"Log Access Event\" logs page."
    },
    {
      "lang": "es",
      "value": "Una exposici\u00f3n de informaci\u00f3n confidencial del sistema a una vulnerabilidad de esfera de control no autorizada [CWE-497] en FortiWeb versi\u00f3n 7.6.0, versi\u00f3n 7.4.3 y anteriores, versi\u00f3n 7.2.10 y anteriores, versi\u00f3n 7.0.10 y anteriores, versi\u00f3n 6.3.23 y anteriores puede permitir que un atacante autenticado acceda a las contrase\u00f1as cifradas de otros administradores a trav\u00e9s de la p\u00e1gina de registros \"Evento de acceso al registro\"."
    }
  ],
  "id": "CVE-2024-36509",
  "lastModified": "2024-11-14T20:33:44.727",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 4.2,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 0.6,
        "impactScore": 3.6,
        "source": "psirt@fortinet.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 4.4,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-11-12T19:15:10.440",
  "references": [
    {
      "source": "psirt@fortinet.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://fortiguard.fortinet.com/psirt/FG-IR-24-180"
    }
  ],
  "sourceIdentifier": "psirt@fortinet.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-497"
        }
      ],
      "source": "psirt@fortinet.com",
      "type": "Primary"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-36509 (GCVE-0-2024-36509)

GHSA-CGPX-R229-QPVJ

WID-SEC-W-2024-3441

CERTFR-2024-AVI-0979

Solutions

CERTFR-2024-AVI-0979

Solutions

FKIE_CVE-2024-36509

Tags

Sightings

Nomenclature