CVE-2024-54026: error based SQLI on device del feature
First published: Tue Mar 11 2025(Updated: )
An improper neutralization of special elements used in an sql command ('sql injection') in Fortinet FortiSandbox Cloud version 23.4, FortiSandbox at least 4.4.0 through 4.4.6 and 4.2.0 through 4.2.7 and 4.0.0 through 4.0.5 and 3.2.0 through 3.2.4 and 3.1.0 through 3.1.5 and 3.0.0 through 3.0.7 allows attacker to execute unauthorized code or commands via specifically crafted HTTP requests.
Credit: psirt@fortinet.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fortinet FortiSandbox Cloud | =23.4 | |
| Fortinet FortiSandbox Firmware | >=4.4.0<4.4.6>=4.2.0<4.2.7>=4.0.0<4.0.5>=3.2.0<3.2.4>=3.1.0<3.1.5>=3.0.0<3.0.7 | |
| Fortinet FortiSandbox Firmware | >=4.4.0<=4.4.6 | |
| Fortinet FortiSandbox Firmware | >=4.2 | |
| Fortinet FortiSandbox Firmware | >=4.0 | |
| Fortinet FortiSandbox Firmware | >=3.2 | |
| Fortinet FortiSandbox Firmware | >=3.1 | |
| Fortinet FortiSandbox Firmware | >=3.0 |
Remedy
Please upgrade to FortiSandbox version 5.0.1 or above Please upgrade to FortiSandbox version 4.4.7 or above
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-54026?
CVE-2024-54026 is categorized as a critical severity SQL injection vulnerability affecting multiple versions of Fortinet FortiSandbox.
How do I fix CVE-2024-54026?
To mitigate CVE-2024-54026, upgrade to Fortinet FortiSandbox version 4.4.7 or later.
Which versions of Fortinet FortiSandbox are affected by CVE-2024-54026?
CVE-2024-54026 affects Fortinet FortiSandbox Cloud 23.4 and multiple FortiSandbox versions including 4.4.0 to 4.4.6, 4.2.0 to 4.2.7, 4.0.0 to 4.0.5, and earlier versions.
What type of vulnerability is CVE-2024-54026?
CVE-2024-54026 is an SQL injection vulnerability that involves improper neutralization of special elements used in an SQL command.
What are the potential impacts of CVE-2024-54026?
Exploitation of CVE-2024-54026 could allow an attacker to execute arbitrary SQL commands on the database, leading to unauthorized data access or manipulation.
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/type
- agent/weakness
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/fortiguard-psirt-latest
- source/FortiGuard
- alias/CVE-2024-54026
- agent/references
- agent/title
- agent/description
- agent/first-publish-date
- collector/fortiguard-psirt
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/source
- agent/severity
- agent/author
- agent/tags
- agent/event
- vendor/fortinet
- canonical/fortinet fortisandbox cloud
- canonical/fortinet fortisandbox firmware
- version/fortinet fortisandbox firmware/4.4.0
- version/fortinet fortisandbox firmware/4.4.6
- version/fortinet fortisandbox firmware/4.2
- version/fortinet fortisandbox firmware/4.0
- version/fortinet fortisandbox firmware/3.2
- version/fortinet fortisandbox firmware/3.1
- version/fortinet fortisandbox firmware/3.0