CVE-2024-26009: An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS 6.4.0 through 6.4.15, FortiOS 6.2.0 through 6.2.16…

high8.1CVSS 3.1

AVNACHPRNUINSUCHIHAH

An authentication bypass using an alternate path or channel [CWE-288] vulnerability in Fortinet FortiOS 6.4.0 through 6.4.15, FortiOS 6.2.0 through 6.2.16, FortiOS 6.0 all versions, FortiPAM 1.2.0, FortiPAM 1.1.0 through 1.1.2, FortiPAM 1.0.0 through 1.0.3, FortiProxy 7.4.0 through 7.4.2, FortiProxy 7.2.0 through 7.2.8, FortiProxy 7.0.0 through 7.0.15, FortiSwitchManager 7.2.0 through 7.2.3, FortiSwitchManager 7.0.0 through 7.0.3 allows an unauthenticated attacker to seize control of a managed device via crafted FGFM requests, if the device is managed by a FortiManager, and if the attacker knows that FortiManager's serial number.

Affected

24 ranges

Vendor	Product	Version range	Fixed in
fortinet	fortimanager	—	—
fortinet	fortinet	—	—
fortinet	fortios	—	—
fortinet	fortios	>= 6.0.0 < 6.2.17	6.2.17
fortinet	fortios	6.0.0 – 6.0.18	—
fortinet	fortios	6.2.0 – 6.2.16	—
fortinet	fortios	>= 6.4.0 < 6.4.16	6.4.16
fortinet	fortios	6.4.0 – 6.4.15	—
fortinet	fortipam	—	—
fortinet	fortipam	—	—
fortinet	fortipam	1.0.0 – 1.2.0	—
fortinet	fortipam	1.1.0 – 1.1.2	—
fortinet	fortiproxy	—	—
fortinet	fortiproxy	>= 7.0.0 < 7.0.16	7.0.16
fortinet	fortiproxy	7.0.0 – 7.0.15	—
fortinet	fortiproxy	>= 7.2.0 < 7.2.9	7.2.9
fortinet	fortiproxy	7.2.0 – 7.2.8	—
fortinet	fortiproxy	>= 7.4.0 < 7.4.3	7.4.3
fortinet	fortiproxy	7.4.0 – 7.4.2	—
fortinet	fortiswitchmanager	—	—
fortinet	fortiswitchmanager	>= 7.0.0 < 7.0.4	7.0.4
fortinet	fortiswitchmanager	7.0.0 – 7.0.3	—
fortinet	fortiswitchmanager	>= 7.2.0 < 7.2.4	7.2.4
fortinet	fortiswitchmanager	7.2.0 – 7.2.3	—