Skip to main content

CVE-2024-55591 in FortiOS & FortiProxy (CVSS 9.6)

dips
Forum|alt.badge.img+7
  • dips
  • Veeam Legend
  • 808 comments

There has been some news doing the rounds about a Zero Day in Fortinet Products recently but information was scarce.

It has now been confirmed that Fortinet FortiGate firewall devices with an Internet facing Management Interface are vulnerable to a zero-day vulnerability. 

The vulnerability allows a remote attacker to gain super-admin privileges. Once they gain those privileges, then they pretty much can do anything to the FortiGate.

Affected versions:

  • FortiOS 7.0 - 7.0.0 through 7.0.16
  • FortiProxy 7.0 - 7.0.0 through 7.0.19
  • FortiProxy 7.2 - 7.2.0 through 7.2.12

CVSSv3 score is 9.6 so pretty much up there.

Needless to say, patch now and if possible restrict the management interface access over the Internet.

Resources:

 

Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2025 | Cyber Security Space VUG Leader

2 comments

vAdmin
Forum|alt.badge.img+2
  • vAdmin
  • Influencer
  • 168 comments
  • January 15, 2025

Thank you ​@dips for sharing.

Not sure why for such important management interface is published to the internet 🙄, hence someone will exploit it soon. 

Microsoft Azure Solutions Architect Expert, VMware Certified Professional - DCV 7, Citrix Certified Professional Virtualization (CCP-V), ITIL Practitioner
MarcoLuvisi
1 person likes this
  • MarcoLuvisi
    MarcoLuvisi
AndrePulia
Forum|alt.badge.img+6
  • AndrePulia
  • Veeam Legend, Veeam Vanguard
  • 333 comments
  • January 15, 2025

​@dips Good information, I’ll send to the fortinet guys :-)

André Pulia - VMCA | VMCE | VMCT | HPECI | VCI | Nutanix Certified Instructor | Twitter: @andrepulia | Blog Site – https://pulia.com.br | https://www.credly.com/users/andre-pulia
MarcoLuvisi
1 person likes this
  • MarcoLuvisi
    MarcoLuvisi

Comment


Terms & Conditions