CVE-2024-23113: Fortinet Multiple Products Format String Vulnerability.

Fortinet Multiple Products Format String Vulnerability. Fortinet FortiOS, FortiPAM, FortiProxy, and FortiWeb contain a format string vulnerability that allows a remote, unauthenticated attacker to execute arbitrary code or commands via specially crafted requests.

• CISA KEV-listed (remediation due 2024-10-30)
• EPSS 54.4% (98.1% percentile)

Browse the CVE database

Read the full analysis on IntelFusions