CVE-2024-50565

Summary

A improper restriction of communication channel to intended endpoints vulnerability [CWE-923] in Fortinet FortiOS version 7.4.0 through 7.4.3, 7.2.0 through 7.2.7, 7.0.0 through 7.0.14, 6.4.0 through 6.4.15 and 6.2.0 through 6.2.16, Fortinet FortiProxy version 7.4.0 through 7.4.2, 7.2.0 through 7.2.9, 7.0.0 through 7.0.15 and 2.0.0 through 2.0.14, Fortinet FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14 and 6.2.0 through 6.2.13, Fortinet FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.14 and 6.2.0 through 6.2.13, Fortinet FortiVoice version 7.0.0 through 7.0.2, 6.4.0 through 6.4.8 and 6.0.0 through 6.0.12 and Fortinet FortiWeb version 7.4.0 through 7.4.2, 7.2.0 through 7.2.10, 7.0.0 through 7.0.10 allows an unauthenticated attacker in a man-in-the-middle position to impersonate the management device (FortiCloud server or/and in certain conditions, FortiManager), via intercepting the FGFM authentication request between the management device and the managed device

Affected Software

VendorProductVersion RangeStatus
FortinetFortiOS7.4.0 <= 7.4.4affected
FortinetFortiOS7.2.0 <= 7.2.8affected
FortinetFortiOS7.0.0 <= 7.0.15affected
FortinetFortiOS6.4.0 <= 6.4.16affected
FortinetFortiOS6.2.0 <= 6.2.16affected
FortinetFortiVoice7.0.0 <= 7.0.2affected
FortinetFortiVoice6.4.0 <= 6.4.8affected
FortinetFortiVoice6.0.0 <= 6.0.12affected
FortinetFortiWeb7.4.0 <= 7.4.2affected
FortinetFortiWeb7.2.0 <= 7.2.11affected
FortinetFortiWeb7.0.0 <= 7.0.11affected
FortinetFortiAnalyzer7.4.0 <= 7.4.2affected
FortinetFortiAnalyzer7.2.0 <= 7.2.4affected
FortinetFortiAnalyzer7.0.0 <= 7.0.11affected
FortinetFortiAnalyzer6.4.0 <= 6.4.14affected
FortinetFortiAnalyzer6.2.0 <= 6.2.13affected

Weaknesses

  • CWE-300: Improper access control

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References