CVE-2024-23113: Format String Bug in fgfmd

First published: Thu Feb 08 2024(Updated: )

A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, FortiPAM versions 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiSwitchManager versions 7.2.0 through 7.2.3, 7.0.0 through 7.0.3 allows attacker to execute unauthorized code or commands via specially crafted packets.

Credit: psirt@fortinet.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/bleeping-computer
• source/BleepingComputer
• alias/CVE-2024-21762
• alias/CVE-2024-23113
• alias/CVE-2023-44487
• alias/CVE-2023-47537
• agent/type
• collector/the-register
• source/The Register
• alias/CVE-2024-23108
• alias/CVE-2024-23109
• alias/CVE-2023-34992
• collector/fortiguard-psirt-latest
• source/FortiGuard
• agent/first-publish-date
• collector/mitre-cve
• source/MITRE
• agent/references
• agent/weakness
• agent/remedy
• agent/description
• agent/severity
• agent/author
• agent/event
• agent/last-modified-date
• collector/epss-latest
• source/FIRST
• agent/epss
• agent/title
• agent/softwarecombine
• agent/tags
• zeroday/true
• agent/news-ai
• agent/software-canonical-lookup
• agent/software-canonical-lookup-request
• collector/fortiguard-psirt
• collector/nvd-api
• source/NVD
• vendor/fortinet
• canonical/fortinet fortios
• version/fortinet fortios/6.0.x
• canonical/fortinet fortisiem
• version/fortinet fortios/7.4.0
• version/fortinet fortios/7.4.2
• version/fortinet fortios/7.2.0
• version/fortinet fortios/7.2.6
• version/fortinet fortios/7.0.0
• version/fortinet fortios/7.0.13
• canonical/fortinet fortipam
• version/fortinet fortipam/1.2
• version/fortinet fortipam/1.1
• version/fortinet fortipam/1.0
• canonical/fortinet fortiproxy
• version/fortinet fortiproxy/7.4.0
• version/fortinet fortiproxy/7.4.2
• version/fortinet fortiproxy/7.2.0
• version/fortinet fortiproxy/7.2.8
• version/fortinet fortiproxy/7.0.0
• version/fortinet fortiproxy/7.0.15
• canonical/fortinet fortiweb
• version/fortinet fortiweb/7.4.0
• version/fortinet fortiweb/7.4.2
• version/fortinet fortiproxy/7.0.14
• canonical/fortinet fortiswitchmanager
• version/fortinet fortiswitchmanager/7.0.0
• version/fortinet fortiswitchmanager/7.0.3
• version/fortinet fortiswitchmanager/7.2.0
• version/fortinet fortiswitchmanager/7.2.3
• version/fortinet fortipam/1.0.0
• version/fortinet fortipam/1.0.3
• version/fortinet fortipam/1.1.0
• version/fortinet fortipam/1.1.2
• version/fortinet fortipam/1.2.0