What is the severity of CVE-2024-23108?

CVE-2024-23108 is considered a critical vulnerability due to its potential for remote code execution.

How do I fix CVE-2024-23108?

To fix CVE-2024-23108, upgrade FortiSIEM to the latest version that is not affected by this vulnerability.

Which versions of FortiSIEM are affected by CVE-2024-23108?

CVE-2024-23108 affects FortiSIEM versions 6.4.0 through 7.1.1 inclusive.

What type of vulnerability is CVE-2024-23108?

CVE-2024-23108 is an os command injection vulnerability, allowing attackers to execute unauthorized commands.

Is there an exploit available for CVE-2024-23108?

Details about specific exploits for CVE-2024-23108 have not been publicly disclosed, but the vulnerability's nature poses significant risks.

Vulnerability/
CVE-2024-23108

critical

CWE

78 77

EPSS

0.068%

5/2/2024

1/8/2024

CVE-2024-23108: OS Command Injection

First published: Mon Feb 05 2024(Updated: )

An improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiSIEM version 7.1.0 through 7.1.1 and 7.0.0 through 7.0.2 and 6.7.0 through 6.7.8 and 6.6.0 through 6.6.3 and 6.5.0 through 6.5.2 and 6.4.0 through 6.4.2 allows attacker to execute unauthorized code or commands via via crafted API requests.

Credit: psirt@fortinet.com

Affected Software	Affected Version	How to fix
Fortinet FortiOS IPS Engine
Fortinet FortiProxy
Fortinet FortiSIEM Windows Agent	>=6.4.0<=6.4.2
Fortinet FortiSIEM Windows Agent	>=6.5.0<=6.5.2
Fortinet FortiSIEM Windows Agent	>=6.6.0<=6.6.3
Fortinet FortiSIEM Windows Agent	>=6.7.0<=6.7.8
Fortinet FortiSIEM Windows Agent	>=7.0.0<=7.0.2
Fortinet FortiSIEM Windows Agent	=7.1.0
Fortinet FortiSIEM Windows Agent	=7.1.1

Remedy

Please upgrade to FortiSIEM version 7.1.2 or above Please upgrade to upcoming FortiSIEM version 7.2.0 or above Please upgrade to upcoming FortiSIEM version 7.0.3 or above Please upgrade to upcoming FortiSIEM version 6.7.9 or above Please upgrade to upcoming FortiSIEM version 6.6.5 or above Please upgrade to upcoming FortiSIEM version 6.5.3 or above Please upgrade to upcoming FortiSIEM version 6.4.4 or above

Never miss a vulnerability like this again

Reference Links

Peer vulnerabilities

(Found alongside the following vulnerabilities)

Frequently Asked Questions

What is the severity of CVE-2024-23108?
CVE-2024-23108 is considered a critical vulnerability due to its potential for remote code execution.
How do I fix CVE-2024-23108?
To fix CVE-2024-23108, upgrade FortiSIEM to the latest version that is not affected by this vulnerability.
Which versions of FortiSIEM are affected by CVE-2024-23108?
CVE-2024-23108 affects FortiSIEM versions 6.4.0 through 7.1.1 inclusive.
What type of vulnerability is CVE-2024-23108?
CVE-2024-23108 is an os command injection vulnerability, allowing attackers to execute unauthorized commands.
Is there an exploit available for CVE-2024-23108?
Details about specific exploits for CVE-2024-23108 have not been publicly disclosed, but the vulnerability's nature poses significant risks.

agent/remedy
agent/weakness
agent/type
agent/description
agent/first-publish-date
agent/author
collector/the-register
source/The Register
alias/CVE-2024-23108
alias/CVE-2024-23109
alias/CVE-2023-34992
collector/bleeping-computer
source/BleepingComputer
alias/CVE-2023-36553
agent/severity
alias/CVE-2024-23113
alias/CVE-2024-21762
alias/CVE-2022-42475
alias/CVE-2023-27997
agent/softwarecombine
collector/epss-latest
source/FIRST
agent/epss
alias/FG-IR-23-130
agent/references
agent/event
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/trending
agent/source
agent/tags
agent/news-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
vendor/fortinet
canonical/fortinet fortios ips engine
canonical/fortinet fortiproxy
canonical/fortinet fortisiem windows agent
version/fortinet fortisiem windows agent/6.4.0
version/fortinet fortisiem windows agent/6.4.2
version/fortinet fortisiem windows agent/6.5.0
version/fortinet fortisiem windows agent/6.5.2
version/fortinet fortisiem windows agent/6.6.0
version/fortinet fortisiem windows agent/6.6.3
version/fortinet fortisiem windows agent/6.7.0
version/fortinet fortisiem windows agent/6.7.8
version/fortinet fortisiem windows agent/7.0.0
version/fortinet fortisiem windows agent/7.0.2
version/fortinet fortisiem windows agent/7.1.0
version/fortinet fortisiem windows agent/7.1.1