What is the severity of CVE-2024-23113?

CVE-2024-23113 is classified as a critical vulnerability due to its potential for remote code execution.

How do I fix CVE-2024-23113?

To mitigate CVE-2024-23113, upgrade FortiOS, FortiProxy, or FortiPAM to the latest recommended versions: 7.4.3 or higher, 7.2.9 or higher, or 1.2.0 respectively.

Which Fortinet products are affected by CVE-2024-23113?

CVE-2024-23113 affects multiple Fortinet products, including FortiOS, FortiProxy, and FortiPAM across various versions.

What type of vulnerability is CVE-2024-23113?

CVE-2024-23113 is a use of externally-controlled format string vulnerability.

Are there known exploits for CVE-2024-23113?

Yes, CVE-2024-23113 has been reported to be actively exploited in the wild.

Vulnerability/
CVE-2024-23113

Exploited

critical

9.8

CWE

134

EPSS

0.091%

8/2/2024

15/2/2024

25/10/2024

29/11/2024

CVE-2024-23113: Format String Bug in fgfmd

First published: Thu Feb 08 2024(Updated: )

A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, FortiPAM versions 1.2.0, 1.1.0 through 1.1.2, 1.0.0 through 1.0.3, FortiSwitchManager versions 7.2.0 through 7.2.3, 7.0.0 through 7.0.3 allows attacker to execute unauthorized code or commands via specially crafted packets.

Credit: psirt@fortinet.com psirt@fortinet.com

Affected Software	Affected Version	How to fix
Fortinet Multiple Products
Fortinet FortiOS IPS Engine	>=7.4.0<=7.4.2
Fortinet FortiOS IPS Engine	>=7.2.0<=7.2.6
Fortinet FortiOS IPS Engine	>=7.0.0<=7.0.13
FortiGuard FortiPAM	>=1.2
FortiGuard FortiPAM	>=1.1
FortiGuard FortiPAM	>=1.0
Fortinet FortiProxy	>=7.4.0<=7.4.2
Fortinet FortiProxy	>=7.2.0<=7.2.8
Fortinet FortiProxy	>=7.0.0<=7.0.15
Fortinet FortiSwitchManager	>=7.2.0<=7.2.3
Fortinet FortiSwitchManager	>=7.0.0<=7.0.3
Fortinet FortiProxy	>=7.0.0<=7.0.14
Fortinet FortiProxy	>=7.2.0<=7.2.8
Fortinet FortiProxy	>=7.4.0<=7.4.2
Fortinet FortiSwitchManager	>=7.0.0<=7.0.3
Fortinet FortiSwitchManager	>=7.2.0<=7.2.3
Fortinet FortiOS IPS Engine	>=7.0.0<=7.0.13
Fortinet FortiOS IPS Engine	>=7.2.0<=7.2.6
Fortinet FortiOS IPS Engine	>=7.4.0<=7.4.2
FortiGuard FortiPAM	>=1.0.0<=1.0.3
FortiGuard FortiPAM	>=1.1.0<=1.1.2
FortiGuard FortiPAM	=1.2.0
Fortinet FortiOS IPS Engine	=6.0.x
Fortinet FortiOS IPS Engine
Fortinet FortiSIEM Windows Agent

Remedy

Please upgrade to FortiWeb version 7.4.3 or above Please upgrade to FortiVoice version 7.0.2 or above Please upgrade to FortiVoice version 6.4.9 or above Please upgrade to FortiSwitchManager version 7.2.4 or above Please upgrade to FortiSwitchManager version 7.0.4 or above Please upgrade to FortiOS version 7.4.3 or above Please upgrade to FortiOS version 7.2.7 or above Please upgrade to FortiOS version 7.0.14 or above Please upgrade to FortiAuthenticator version 7.0.0 or above Please upgrade to FortiPAM version 1.2.1 or above Please upgrade to FortiPAM version 1.1.3 or above Please upgrade to FortiProxy version 7.4.3 or above Please upgrade to FortiProxy version 7.2.9 or above Please upgrade to FortiProxy version 7.0.16 or above

Remedy

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Never miss a vulnerability like this again

Reference Links

Peer vulnerabilities

(Found alongside the following vulnerabilities)

Frequently Asked Questions

What is the severity of CVE-2024-23113?
CVE-2024-23113 is classified as a critical vulnerability due to its potential for remote code execution.
How do I fix CVE-2024-23113?
To mitigate CVE-2024-23113, upgrade FortiOS, FortiProxy, or FortiPAM to the latest recommended versions: 7.4.3 or higher, 7.2.9 or higher, or 1.2.0 respectively.
Which Fortinet products are affected by CVE-2024-23113?
CVE-2024-23113 affects multiple Fortinet products, including FortiOS, FortiProxy, and FortiPAM across various versions.
What type of vulnerability is CVE-2024-23113?
CVE-2024-23113 is a use of externally-controlled format string vulnerability.
Are there known exploits for CVE-2024-23113?
Yes, CVE-2024-23113 has been reported to be actively exploited in the wild.

collector/bleeping-computer
source/BleepingComputer
alias/CVE-2024-21762
alias/CVE-2024-23113
alias/CVE-2023-44487
alias/CVE-2023-47537
agent/type
collector/the-register
source/The Register
alias/CVE-2024-23108
alias/CVE-2024-23109
alias/CVE-2023-34992
agent/first-publish-date
agent/weakness
agent/severity
collector/epss-latest
source/FIRST
agent/epss
agent/title
exploited/true
collector/cisa-known-exploited
source/CISA
agent/software-canonical-lookup
agent/remedy
agent/author
alias/CVE-2022-42475
alias/CVE-2024-9379
alias/CVE-2024-9380
alias/CVE-2024-8963
alias/CVE-2024-8190
alias/CVE-2024-9381
agent/description
collector/mitre-cve
source/MITRE
alias/CVE-2024-47575
agent/references
collector/fortiguard-psirt-latest
source/FortiGuard
agent/last-modified-date
agent/softwarecombine
agent/event
agent/trending
agent/source
agent/tags
collector/fortiguard-psirt
agent/software-canonical-lookup-request
collector/nvd-cve
source/NVD
collector/nvd-api
zeroday/true
agent/news-ai
vendor/fortinet
canonical/fortinet multiple products
canonical/fortinet fortios ips engine
version/fortinet fortios ips engine/7.4.0
version/fortinet fortios ips engine/7.4.2
version/fortinet fortios ips engine/7.2.0
version/fortinet fortios ips engine/7.2.6
version/fortinet fortios ips engine/7.0.0
version/fortinet fortios ips engine/7.0.13
canonical/fortiguard fortipam
version/fortiguard fortipam/1.2
version/fortiguard fortipam/1.1
version/fortiguard fortipam/1.0
canonical/fortinet fortiproxy
version/fortinet fortiproxy/7.4.0
version/fortinet fortiproxy/7.4.2
version/fortinet fortiproxy/7.2.0
version/fortinet fortiproxy/7.2.8
version/fortinet fortiproxy/7.0.0
version/fortinet fortiproxy/7.0.15
canonical/fortinet fortiswitchmanager
version/fortinet fortiswitchmanager/7.2.0
version/fortinet fortiswitchmanager/7.2.3
version/fortinet fortiswitchmanager/7.0.0
version/fortinet fortiswitchmanager/7.0.3
version/fortinet fortiproxy/7.0.14
version/fortiguard fortipam/1.0.0
version/fortiguard fortipam/1.0.3
version/fortiguard fortipam/1.1.0
version/fortiguard fortipam/1.1.2
version/fortiguard fortipam/1.2.0
version/fortinet fortios ips engine/6.0.x
canonical/fortinet fortisiem windows agent

CVE-2024-23113: Format String Bug in fgfmd

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Peer vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2024-23113?

How do I fix CVE-2024-23113?

Which Fortinet products are affected by CVE-2024-23113?

What type of vulnerability is CVE-2024-23113?

Are there known exploits for CVE-2024-23113?

Company

Resources

Contact