CVE-2024-26006: Cross site scripting vulnerability in SSL VPN web UI
First published: Tue Jul 09 2024(Updated: )
An improper neutralization of input during web page Generation vulnerability [CWE-79] in FortiOS and FortiProxy's web SSL VPN UI may allow a remote unauthenticated attacker to perform a Cross-Site Scripting attack via social engineering the targeted user into bookmarking a malicious samba server, then opening the bookmark.
Credit: psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FortiOS | >=7.4.0<=7.4.3 | |
| FortiOS | >=7.2.0<=7.2.7 | |
| FortiOS | >=7.0.0<=7.0.13 | |
| FortiOS | >=6.4 | |
| Fortinet FortiProxy SSL VPN webmode | >=7.4.0<=7.4.3 | |
| Fortinet FortiProxy SSL VPN webmode | >=7.2.0<=7.2.9 | |
| Fortinet FortiProxy SSL VPN webmode | >=7.0.0<=7.0.16 |
Remedy
Please upgrade to FortiProxy version 7.4.4 or above Please upgrade to FortiProxy version 7.2.10 or above Please upgrade to FortiProxy version 7.0.17 or above Please upgrade to FortiOS version 7.4.4 or above Please upgrade to FortiOS version 7.2.8 or above Please upgrade to FortiOS version 7.0.14 or above
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-26006?
CVE-2024-26006 is classified as a moderate severity vulnerability due to its potential for Cross-Site Scripting attacks.
How do I fix CVE-2024-26006?
To fix CVE-2024-26006, update FortiOS or FortiProxy to the latest versions, specifically 7.4.4 or later for affected versions.
Which versions of FortiOS are affected by CVE-2024-26006?
CVE-2024-26006 affects FortiOS versions 7.0.0 to 7.4.3, as well as 6.4.
Which versions of FortiProxy are affected by CVE-2024-26006?
CVE-2024-26006 affects FortiProxy versions 7.0.0 to 7.4.3.
What type of attack does CVE-2024-26006 allow?
CVE-2024-26006 allows a remote unauthenticated attacker to perform a Cross-Site Scripting (XSS) attack.
- collector/fortiguard-psirt-latest
- source/FortiGuard
- alias/CVE-2024-26006
- agent/first-publish-date
- agent/title
- collector/the-register
- source/The Register
- alias/CVE-2024-38080
- alias/CVE-2024-38112
- alias/CVE-2024-35264
- alias/CVE-2024-37985
- alias/CVE-2024-38074
- alias/CVE-2024-38076
- alias/CVE-2024-38077
- alias/CVE-2024-38060
- alias/CVE-2024-38023
- alias/CVE-2024-34123
- alias/CVE-2024-20781
- alias/CVE-2024-20782
- alias/CVE-2024-20783
- alias/CVE-2024-20785
- alias/CVE-2024-34139
- alias/CVE-2024-34140
- alias/CVE-2024-26015
- alias/CVE-2024-6151
- alias/CVE-2024-6286
- alias/CVE-2024-31320
- agent/remedy
- agent/references
- agent/weakness
- agent/type
- agent/description
- collector/nvd-api
- source/NVD
- agent/source
- agent/severity
- agent/author
- agent/event
- agent/trending
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/fortiguard-psirt
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/fortinet
- canonical/fortios
- version/fortios/7.4.0
- version/fortios/7.4.3
- version/fortios/7.2.0
- version/fortios/7.2.7
- version/fortios/7.0.0
- version/fortios/7.0.13
- version/fortios/6.4
- canonical/fortinet fortiproxy ssl vpn webmode
- version/fortinet fortiproxy ssl vpn webmode/7.4.0
- version/fortinet fortiproxy ssl vpn webmode/7.4.3
- version/fortinet fortiproxy ssl vpn webmode/7.2.0
- version/fortinet fortiproxy ssl vpn webmode/7.2.9
- version/fortinet fortiproxy ssl vpn webmode/7.0.0
- version/fortinet fortiproxy ssl vpn webmode/7.0.16