Operating System:

[Appliance]

Published:

09 February 2024

Protect yourself against future threats.

//Service

Malicious URL Feed

Add this Australian-based feed to your firewall blacklist and SIEM to prevent compromises to your network.

Read more
Resources > Security Bulletins > ESB-2024.0849 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2024.0849
                  FortiOS - Out-of-bound Write in sslvpnd
                              9 February 2024

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           FortiOS
Publisher:         Fortinet
Operating System:  Network Appliance
Resolution:        Patch/Upgrade
CVE Names:         CVE-2024-21762  

Original Bulletin: 
   https://fortiguard.fortinet.com/psirt/FG-IR-24-015

Comment: CVSS (Max):  9.6 CVE-2024-21762 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
         CVSS Source: Fortinet
         Calculator:  https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

- --------------------------BEGIN INCLUDED TEXT--------------------

FortiOS - Out-of-bound Write in sslvpnd

IR Number    : FG-IR-24-015
Date         : Feb 8, 2024
Severity     : Critical
CVSSv3 Score : 9.6
Impact       : Execute unauthorized code or commands
CVE ID       : CVE-2024-21762
Language     : English
Portuguese

Summary

A out-of-bounds write vulnerability [CWE-787] in FortiOS may allow a remote
unauthenticated attacker to execute arbitrary code or command via specially
crafted HTTP requests.

Version     | Affected             | Solution                  
FortiOS 7.6 | Not affected         | Not Applicable            
FortiOS 7.4 | 7.4.0 through 7.4.2  | Upgrade to 7.4.3 or above 
FortiOS 7.2 | 7.2.0 through 7.2.6  | Upgrade to 7.2.7 or above 
FortiOS 7.0 | 7.0.0 through 7.0.13 | Upgrade to 7.0.14 or above
FortiOS 6.4 | 6.4.0 through 6.4.14 | Upgrade to 6.4.15 or above
FortiOS 6.2 | 6.2.0 through 6.2.15 | Upgrade to 6.2.16 or above
FortiOS 6.0 | 6.0 all versions     | Migrate to a fixed release

Workaround : disable SSL VPN (disable webmode is NOT a valid workaround)

Note: This is potentially being exploited in the wild.

Follow the recommended upgrade path using our tool at: https://
docs.fortinet.com/upgrade-tool

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        https://www.auscert.org.au/bulletins/

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: https://auscert.org.au/gpg-key/

iQIVAwUBZcWCOskNZI30y1K9AQiYjg//QyC7ddjrIYQuXcCJRgZhb9TRZAm1DQKy
5a+WbSI9e5FT0QgJTC+S6KT2AsfMNQ36fSLTtqXIY2wMAsBcFPc4WKONFG7So9Nt
KcgoUof1rK6qSTpB+V0GfzVUvPEKA0Ldpa6cdjVmnuz8L2PQ7UR5t7t3ZhBjmeR1
THXl4DuUF4F9/S97lZeejCBBe97m+Fil/EtLiGiOW2a+cVXVGOlh8bT5zfCEPY24
Re595Y/Fne15HVe09BU1u1gsMkc0Dxp4dKShlEkN0pJ7RXJVT+6PbI7YASMrBMie
i6pZTGQtiJK7CoQu7QIK0oCmzVJP9xYdNVs0UVMkzM4rW2J7b7BEJUR41G0uJOwq
+o0uuJIjJKVHE9I7c/4uTWrp12BRce/kLNw97iUD9k6R7iKDRjTn/Q2zmOb1VcTU
yzo1h2PW78845sbYdvOzRstviOvGHW+5hh9FbY9hhXlECxnniF1AtVwAZd+5UW7R
lkvNf3zXPr57ZYAZgTJlR0rnRWmKCngV+nsi+j6ZutqKiOZ8gFO1MqiQG78DXCEk
GS3wZZKaVwiGQB5l7H2Lt2hHAy0zwhyN660hyhbjVwUBBVo1laHthjeHRDhQb7Jt
/JhMDLepii4F34PyO4XSuiaCAF2BdqIrJDMnivew8d8jPzBkPDQNFzJJC1okCFe9
Y4VPwpuKqOY=
=e15q
-----END PGP SIGNATURE-----