CVE-2024-23110

7.8

High

Published:11 Jun 2024

Last updated:17 Jun 2026

Source:psirt@fortinet.com

Modified

Weakness (CWE)

CWE-121Stack-based Buffer Overflow
CWE-787Out-of-bounds Write

CVSS Vector

v3.1

Attack Vector: Local
Attack Complexity: Low
Privileges Required: Low
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High

View on MITRE Find PoC on GitHub

Description

A stack-based buffer overflow in Fortinet FortiOS version 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0 all versions allows attacker to execute unauthorized code or commands via specially crafted commands

References

psirt@fortinet.com

https://fortiguard.com/psirt/FG-IR-23-460

af854a3a-2127-422b-91ae-364da2661108

https://fortiguard.com/psirt/FG-IR-23-460