#VU111045 Man-in-the-Middle (MitM) attack in FortiOS and FortiProxy - CVE-2024-50568
Vulnerability identifier: #VU111045
Vulnerability risk: Medium
CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID:
CWE-ID:
CWE-300
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
FortiOS
Operating systems & Components /
Operating system
FortiProxy
Hardware solutions /
Routers & switches, VoIP, GSM, etc
Vendor: Fortinet, Inc
Description
The vulnerability allows a remote non-authenticated attacker to manipulate data.
The vulnerability exists due to channel accessible by non-endpoint ('man-in-the-middle') in security fabric daemon. An unauthenticated attacker with the knowledge of device specific data can spoof the identity of a downstream device of the security fabric via crafted TCP requests.
Mitigation
Install update from vendor's website.
Vulnerable software versions
FortiOS: 6.4.2, 6.4.3, 6.4.4 - 7.0.14, 6.4.5, 6.4.6, 6.4.7, 6.4.8, 6.4.9, 6.4.10, 6.4.11, 6.4.12, 6.4.13, 6.4.14, 6.4.15, 6.4.16, 7.0.0, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.15, 7.0.16, 7.0.17, 7.2.0, 7.2.1, 7.2.2, 7.2.3, 7.2.4, 7.2.5, 7.2.6, 7.2.7, 7.2.8, 7.4.0, 7.4.1, 7.4.2, 7.4.3
FortiProxy: 7.0.0, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.0.10, 7.0.11, 7.0.12, 7.0.13, 7.0.14, 7.0.15, 7.0.16, 7.2.0, 7.2.1, 7.2.2, 7.2.3, 7.2.4, 7.2.5, 7.2.6, 7.2.7, 7.2.8, 7.2.9, 7.4.0, 7.4.1, 7.4.2, 7.4.3
External links
https://www.fortiguard.com/psirt/FG-IR-24-058
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
