Fortinet have confirmed a critical zero-day exploit is currently being exploited in the wild by cybercriminals.
CVE-2024-47575 is a vulnerability in which can allow cybercriminals to use a compromised FortiManger device to run arbitrary code and commands against other FortiManager devices.
The common vulnerability severity score for CVE-2024-47575 has been graded at 9.8 largely due to the fact that this attack can be carried out by an unauthenticated user remotely.
Fortinet have announced that the following Fortinet products are currently vulnerable to the critical zero-day:
·      FortiManager 7.6.0
·      FortiManager 7.4.0 through 7.4.4
·      FortiManager 7.2.0 through 7.2.7
·      FortiManager 7.0.0 through 7.0.12
·      FortiManager 6.4.0 through 6.4.14
·      FortiManager 6.2.0 through 6.2.12
·      FortiManager Cloud 7.4.1 through 7.4.4
·      FortiManager Cloud 7.2 (all versions)
·      FortiManager Cloud 7.0 (all versions)
·      FortiManager Cloud 6.4 (all versions)
Fortinet highly recommend that FortiManager users carry out an emergency update as soon as possible to a more secure version of FortiManager. Some versions also have workarounds which can be applied if updating is not an option. CISA are now aware of the vulnerability and have added it to its catalogue of known exploited vulnerabilities along with CVE-2024-23113 which was added earlier this month and impacted Fortinet FortiOS, FortiPAM, FortiProxy, and FortiWeb.
コメント