Intruvent Technologies
Contact us
9.8
Critical CVE Analysis CISA KEV Active ITW TLP:CLEAR

CVE-2024-21762

FortiOS SSL VPN Out-of-Bounds Write RCE

Critical pre-authentication remote code execution vulnerability in FortiOS SSL VPN. An out-of-bounds write condition allows unauthenticated attackers to execute arbitrary code via specially crafted HTTP requests. Public PoC available.

CVSS Score
9.8 Critical
Affected Product
Fortinet FortiOS
CWE
CWE-787
Vendor Advisory
FG-IR-24-015
CISA KEV Date
February 9, 2024
1
Executive Summary
Active Exploitation with Public PoC
CVE-2024-21762 is actively exploited in the wild with a publicly available proof-of-concept. Immediate patching is required for all affected FortiOS versions.

CVE-2024-21762 is an out-of-bounds write vulnerability in FortiOS SSL VPN that allows pre-authentication remote code execution. The vulnerability exists in the handling of HTTP requests.

Full report content will be loaded from Artemis.
Contact us if you need the complete report.

Detect CVE-2024-21762 Exploitation in Real-Time

BRACE identifies exploitation attempts for this vulnerability and alerts your team immediately:

  • SSL VPN exploitation pattern detection
  • Anomalous FortiGate traffic monitoring
  • Post-exploitation behavior detection
Learn More About BRACE Request Demo

Related Reports

Critical CVE Analysis

CVE-2024-55591: FortiOS Auth Bypass

Related FortiOS vulnerability often chained in attacks.

View Analysis →
Critical Threat Actor

Qilin Ransomware

Ransomware group exploiting FortiOS vulnerabilities.

View Profile →
Critical Threat Actor

Volt Typhoon

APT targeting edge network devices for initial access.

View Guide →

Stay Ahead of CVE-2024-21762 Exploitation

BRACE monitors for exploitation of this vulnerability and 500+ other actively exploited CVEs.

Get BRACE Talk to an Expert