What is the severity of CVE-2024-26015?

CVE-2024-26015 has a medium severity due to its potential to allow unauthorized access through IP blocklist bypass.

How do I fix CVE-2024-26015?

To remediate CVE-2024-26015, upgrade FortiOS and FortiProxy to version 7.4.4 or 7.2.9 or later.

Which Fortinet products are affected by CVE-2024-26015?

CVE-2024-26015 affects FortiOS versions from 7.0 to 7.4.3 and FortiProxy from 7.0 to 7.4.3.

Can CVE-2024-26015 be exploited remotely?

Yes, CVE-2024-26015 can be exploited remotely by an unauthenticated attacker.

What type of vulnerability is CVE-2024-26015?

CVE-2024-26015 is classified as an incorrect parsing of numbers with different radices vulnerability.

Vulnerability/
CVE-2024-26015

medium

4.7

CWE

1389 704

9/7/2024

9/9/2024

25/10/2024

CVE-2024-26015: FortiOS - IP address validation mishandles zero characters

First published: Tue Jul 09 2024(Updated: )

An incorrect parsing of numbers with different radices vulnerability [CWE-1389] in FortiOS and FortiProxy IP address validation feature may permit an unauthenticated attacker to bypass the IP blocklist via crafted requests.

Credit: psirt@fortinet.com

Affected Software	Affected Version	How to fix
Fortinet FortiProxy	>=7.0.0<=7.4.3
Fortinet FortiOS IPS Engine	>=7.0.0<=7.0.15
Fortinet FortiOS IPS Engine	>=7.2.0<=7.2.8
Fortinet FortiOS IPS Engine	>=7.4.0<=7.4.3
Fortinet FortiOS IPS Engine	>=7.4.0<=7.4.3
Fortinet FortiOS IPS Engine	>=7.2.0<=7.2.8
Fortinet FortiOS IPS Engine	>=7.0
Fortinet FortiProxy	>=7.4.0<=7.4.3
Fortinet FortiProxy	>=7.2
Fortinet FortiProxy	>=7.0

Remedy

Please upgrade to FortiProxy version 7.4.4 or above Please upgrade to FortiOS version 7.6.0 or above Please upgrade to FortiOS version 7.4.4 or above

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-26015?
CVE-2024-26015 has a medium severity due to its potential to allow unauthorized access through IP blocklist bypass.
How do I fix CVE-2024-26015?
To remediate CVE-2024-26015, upgrade FortiOS and FortiProxy to version 7.4.4 or 7.2.9 or later.
Which Fortinet products are affected by CVE-2024-26015?
CVE-2024-26015 affects FortiOS versions from 7.0 to 7.4.3 and FortiProxy from 7.0 to 7.4.3.
Can CVE-2024-26015 be exploited remotely?
Yes, CVE-2024-26015 can be exploited remotely by an unauthenticated attacker.
What type of vulnerability is CVE-2024-26015?
CVE-2024-26015 is classified as an incorrect parsing of numbers with different radices vulnerability.

agent/first-publish-date
agent/title
agent/remedy
agent/description
agent/type
agent/author
collector/the-register
source/The Register
alias/CVE-2024-38080
alias/CVE-2024-38112
alias/CVE-2024-35264
alias/CVE-2024-37985
alias/CVE-2024-38074
alias/CVE-2024-38076
alias/CVE-2024-38077
alias/CVE-2024-38060
alias/CVE-2024-38023
alias/CVE-2024-34123
alias/CVE-2024-20781
alias/CVE-2024-20782
alias/CVE-2024-20783
alias/CVE-2024-20785
alias/CVE-2024-34139
alias/CVE-2024-34140
alias/CVE-2024-26006
alias/CVE-2024-26015
alias/CVE-2024-6151
alias/CVE-2024-6286
alias/CVE-2024-31320
agent/references
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/weakness
agent/softwarecombine
collector/fortiguard-psirt-latest
source/FortiGuard
agent/event
agent/trending
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/fortiguard-psirt
vendor/fortinet
canonical/fortinet fortiproxy
version/fortinet fortiproxy/7.0.0
version/fortinet fortiproxy/7.4.3
canonical/fortinet fortios ips engine
version/fortinet fortios ips engine/7.0.0
version/fortinet fortios ips engine/7.0.15
version/fortinet fortios ips engine/7.2.0
version/fortinet fortios ips engine/7.2.8
version/fortinet fortios ips engine/7.4.0
version/fortinet fortios ips engine/7.4.3
version/fortinet fortios ips engine/7.0
version/fortinet fortiproxy/7.4.0
version/fortinet fortiproxy/7.2
version/fortinet fortiproxy/7.0