CVE-2024-55591 - Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability

Vulnerability Name

Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability

Description

Fortinet FortiOS and FortiProxy contain an authentication bypass vulnerability that may allow an unauthenticated, remote attacker to gain super-admin privileges via crafted requests to Node.js websocket module.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://fortiguard.fortinet.com/psirt/FG-IR-24-535

https://nvd.nist.gov/vuln/detail/CVE-2024-55591

Related News Articles

Critical FortiSwitch flaw lets hackers change admin passwords remotelyApril 10, 2025

VanHelsing RaaS Launch: 3 Victims, $5K Entry Fee, Multi-OS, and Double Extortion TacticsMarch 24, 2025

New SuperBlack ransomware exploits Fortinet auth bypass flawsMarch 14, 2025

Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update NowFebruary 12, 2025

Fortinet discloses second firewall auth bypass patched in JanuaryFebruary 12, 2025