CVE-2024-52962: Log Pollution via login page
First published: Tue Apr 08 2025(Updated: )
An Improper Output Neutralization for Logs vulnerability [CWE-117] in FortiAnalyzer version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.13 and below and FortiManager version 7.6.1 and below, version 7.4.5 and below, version 7.2.8 and below, version 7.0.12 and below may allow an unauthenticated remote attacker to pollute the logs via crafted login requests.
Credit: psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fortinet FortiAnalyzer | >=7.6.0<=7.6.1 | |
| Fortinet FortiAnalyzer | >=7.4.0<=7.4.5 | |
| Fortinet FortiAnalyzer | >=7.2.0<=7.2.8 | |
| Fortinet FortiAnalyzer | >=7.0.0<=7.0.13 | |
| Fortinet FortiManager | >=7.6.0<=7.6.1 | |
| Fortinet FortiManager | >=7.4.0<=7.4.5 | |
| Fortinet FortiManager | >=7.2.0<=7.2.8 | |
| Fortinet FortiManager | >=7.0.0<=7.0.13 |
Remedy
Please upgrade to FortiAnalyzer version 7.6.2 or above Please upgrade to FortiAnalyzer version 7.4.6 or above Please upgrade to FortiAnalyzer version 7.2.9 or above Please upgrade to FortiAnalyzer version 7.0.14 or above Please upgrade to FortiManager version 7.6.2 or above Please upgrade to FortiManager version 7.4.6 or above Please upgrade to FortiManager version 7.2.9 or above Please upgrade to FortiManager version 7.0.14 or above
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-52962?
The severity of CVE-2024-52962 is categorized as a high risk due to improper output neutralization for logs.
How do I fix CVE-2024-52962?
To fix CVE-2024-52962, update your FortiAnalyzer or FortiManager to version 7.6.2, 7.4.6, 7.2.9, or 7.0.14 depending on your current version.
Which Fortinet products are affected by CVE-2024-52962?
FortiAnalyzer versions 7.6.1 and below, and FortiManager versions 7.6.1 and below are affected by CVE-2024-52962.
What is the nature of the vulnerability CVE-2024-52962?
CVE-2024-52962 is an improper output neutralization for logs vulnerability as per CWE-117.
How can I check if my system is vulnerable to CVE-2024-52962?
You can check the version of your FortiAnalyzer or FortiManager software and compare it with the affected versions listed for CVE-2024-52962.
- collector/fortiguard-psirt-latest
- source/FortiGuard
- alias/CVE-2024-52962
- agent/first-publish-date
- agent/title
- collector/fortiguard-psirt
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/weakness
- agent/remedy
- agent/type
- agent/description
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/severity
- agent/author
- agent/source
- agent/tags
- agent/event
- vendor/fortinet
- canonical/fortinet fortianalyzer
- version/fortinet fortianalyzer/7.6.0
- version/fortinet fortianalyzer/7.6.1
- version/fortinet fortianalyzer/7.4.0
- version/fortinet fortianalyzer/7.4.5
- version/fortinet fortianalyzer/7.2.0
- version/fortinet fortianalyzer/7.2.8
- version/fortinet fortianalyzer/7.0.0
- version/fortinet fortianalyzer/7.0.13
- canonical/fortinet fortimanager
- version/fortinet fortimanager/7.6.0
- version/fortinet fortimanager/7.6.1
- version/fortinet fortimanager/7.4.0
- version/fortinet fortimanager/7.4.5
- version/fortinet fortimanager/7.2.0
- version/fortinet fortimanager/7.2.8
- version/fortinet fortimanager/7.0.0
- version/fortinet fortimanager/7.0.13