What is the severity of FG-IR-24-015?

The FG-IR-24-015 vulnerability is classified as a critical security issue that can allow remote unauthenticated attackers to execute arbitrary code.

How do I fix FG-IR-24-015?

To mitigate FG-IR-24-015, upgrade to the appropriate FortiOS or FortiProxy versions as specified in the advisory.

What products are affected by FG-IR-24-015?

The FG-IR-24-015 vulnerability affects FortiOS and FortiProxy versions from 7.4.0 to 7.4.2, and other specified versions down to 6.0.0.

Can the FG-IR-24-015 vulnerability be exploited remotely?

Yes, FG-IR-24-015 can be exploited remotely via specially crafted HTTP requests.

What is a temporary workaround for FG-IR-24-015?

A temporary workaround for FG-IR-24-015 is to disable the SSL VPN, as disabling web mode is not a valid solution.

Vulnerability/
FG-IR-24-015

critical

9.6

8/2/2024

15/1/2025

FG-IR-24-015: Out-of-bound Write in sslvpnd

First published: Thu Feb 08 2024(Updated: )

A out-of-bounds write vulnerability [CWE-787] in FortiOS and FortiProxy may allow a remote unauthenticated attacker to execute arbitrary code or command via specially crafted HTTP requests. Workaround : disable SSL VPN (disable webmode is NOT a valid workaround) Note: This is potentially being exploited in the wild.

Affected Software	Affected Version	How to fix
Fortinet FortiOS IPS Engine	>=7.4.0<=7.4.2
Fortinet FortiOS IPS Engine	>=7.2.0<=7.2.6
Fortinet FortiOS IPS Engine	>=7.0.0<=7.0.13
Fortinet FortiOS IPS Engine	>=6.4.0<=6.4.14
Fortinet FortiOS IPS Engine	>=6.2.0<=6.2.15
Fortinet FortiOS IPS Engine	>=6.0.0<=6.0.17
Fortinet FortiProxy	>=7.4.0<=7.4.2
Fortinet FortiProxy	>=7.2.0<=7.2.8
Fortinet FortiProxy	>=7.0.0<=7.0.14
Fortinet FortiProxy	>=2.0.0<=2.0.13
Fortinet FortiProxy	>=1.2
Fortinet FortiProxy	>=1.1
Fortinet FortiProxy	>=1.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of FG-IR-24-015?
The FG-IR-24-015 vulnerability is classified as a critical security issue that can allow remote unauthenticated attackers to execute arbitrary code.
How do I fix FG-IR-24-015?
To mitigate FG-IR-24-015, upgrade to the appropriate FortiOS or FortiProxy versions as specified in the advisory.
What products are affected by FG-IR-24-015?
The FG-IR-24-015 vulnerability affects FortiOS and FortiProxy versions from 7.4.0 to 7.4.2, and other specified versions down to 6.0.0.
Can the FG-IR-24-015 vulnerability be exploited remotely?
Yes, FG-IR-24-015 can be exploited remotely via specially crafted HTTP requests.
What is a temporary workaround for FG-IR-24-015?
A temporary workaround for FG-IR-24-015 is to disable the SSL VPN, as disabling web mode is not a valid solution.

agent/last-modified-date
agent/type
agent/first-publish-date
agent/references
agent/severity
agent/softwarecombine
agent/title
agent/description
collector/fortiguard-psirt-latest
source/FortiGuard
alias/CVE-2024-21762
agent/event
agent/source
agent/tags
collector/fortiguard-psirt
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/fortinet
canonical/fortinet fortios ips engine
version/fortinet fortios ips engine/7.4.0
version/fortinet fortios ips engine/7.4.2
version/fortinet fortios ips engine/7.2.0
version/fortinet fortios ips engine/7.2.6
version/fortinet fortios ips engine/7.0.0
version/fortinet fortios ips engine/7.0.13
version/fortinet fortios ips engine/6.4.0
version/fortinet fortios ips engine/6.4.14
version/fortinet fortios ips engine/6.2.0
version/fortinet fortios ips engine/6.2.15
version/fortinet fortios ips engine/6.0.0
version/fortinet fortios ips engine/6.0.17
canonical/fortinet fortiproxy
version/fortinet fortiproxy/7.4.0
version/fortinet fortiproxy/7.4.2
version/fortinet fortiproxy/7.2.0
version/fortinet fortiproxy/7.2.8
version/fortinet fortiproxy/7.0.0
version/fortinet fortiproxy/7.0.14
version/fortinet fortiproxy/2.0.0
version/fortinet fortiproxy/2.0.13
version/fortinet fortiproxy/1.2
version/fortinet fortiproxy/1.1
version/fortinet fortiproxy/1.0