What is the severity of FG-IR-24-116?

The FG-IR-24-116 vulnerability has a high severity due to its potential for OS command injection by an authenticated privileged attacker.

How do I fix FG-IR-24-116?

To remediate the FG-IR-24-116 vulnerability, update your FortiAnalyzer or FortiManager software to the recommended versions provided by Fortinet.

Which products are affected by FG-IR-24-116?

The FG-IR-24-116 vulnerability affects FortiManager and FortiAnalyzer, particularly versions below the specified remedial versions.

Can FG-IR-24-116 be exploited remotely?

FG-IR-24-116 requires authentication, thus it can only be exploited by an authenticated privileged user with access to the affected systems.

What are the consequences of an exploit of FG-IR-24-116?

Exploitation of the FG-IR-24-116 vulnerability could allow an attacker to execute unauthorized commands on the affected system, leading to potential data breaches or system compromise.

Vulnerability/
FG-IR-24-116

medium

6.3

CWE

77 78

12/11/2024

18/12/2024

FG-IR-24-116: OS command injection in CLI command

First published: Tue Nov 12 2024(Updated: )

An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in FortiManager, FortiAnalyzer & FortiAnalyzer-BigData CLI may allow an authenticated privileged attacker to execute unauthorized code or commands via crafted CLI requests.

Affected Software	Affected Version	How to fix
Fortinet FortiAnalyzer	>=7.4.0<=7.4.2
Fortinet FortiAnalyzer	>=7.2.0<=7.2.5
Fortinet FortiAnalyzer	>=7.0
Fortinet FortiAnalyzer	>=6.4
Fortinet FortiAnalyzer	>=6.2
Fortinet FortiAnalyzer	=.
Fortinet FortiAnalyzer	>=7.2.0<=7.2.7
Fortinet FortiAnalyzer	>=7.0
Fortinet FortiAnalyzer	>=6.4
Fortinet FortiAnalyzer	>=6.2
Fortinet FortiManager	>=7.4.0<=7.4.2
Fortinet FortiManager	>=7.2.0<=7.2.5
Fortinet FortiManager	>=7.0
Fortinet FortiManager	>=6.4
Fortinet FortiManager	>=6.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of FG-IR-24-116?
The FG-IR-24-116 vulnerability has a high severity due to its potential for OS command injection by an authenticated privileged attacker.
How do I fix FG-IR-24-116?
To remediate the FG-IR-24-116 vulnerability, update your FortiAnalyzer or FortiManager software to the recommended versions provided by Fortinet.
Which products are affected by FG-IR-24-116?
The FG-IR-24-116 vulnerability affects FortiManager and FortiAnalyzer, particularly versions below the specified remedial versions.
Can FG-IR-24-116 be exploited remotely?
FG-IR-24-116 requires authentication, thus it can only be exploited by an authenticated privileged user with access to the affected systems.
What are the consequences of an exploit of FG-IR-24-116?
Exploitation of the FG-IR-24-116 vulnerability could allow an attacker to execute unauthorized commands on the affected system, leading to potential data breaches or system compromise.

agent/last-modified-date
agent/type
agent/first-publish-date
agent/severity
agent/weakness
agent/title
agent/references
agent/description
collector/fortiguard-psirt-latest
source/FortiGuard
alias/CVE-2024-32118
agent/event
agent/trending
agent/source
agent/softwarecombine
agent/tags
collector/fortiguard-psirt
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/fortinet
canonical/fortinet fortianalyzer
version/fortinet fortianalyzer/7.4.0
version/fortinet fortianalyzer/7.4.2
version/fortinet fortianalyzer/7.2.0
version/fortinet fortianalyzer/7.2.5
version/fortinet fortianalyzer/7.0
version/fortinet fortianalyzer/6.4
version/fortinet fortianalyzer/6.2
version/fortinet fortianalyzer/.
version/fortinet fortianalyzer/7.2.7
canonical/fortinet fortimanager
version/fortinet fortimanager/7.4.0
version/fortinet fortimanager/7.4.2
version/fortinet fortimanager/7.2.0
version/fortinet fortimanager/7.2.5
version/fortinet fortimanager/7.0
version/fortinet fortimanager/6.4
version/fortinet fortimanager/6.2