CVE-2024-21762 PoC — Fortinet FortiOS 缓冲区错误漏洞

Source

https://github.com/rdoix/cve-2024-21762-checker

Associated Vulnerability

Title:Fortinet FortiOS 缓冲区错误漏洞 (CVE-2024-21762)
Description:A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7 allows attacker to execute unauthorized code or commands via specifically crafted requests

Readme

# FortiGate cve-2024-21762-checker
This script is used to check for vulnerabilities in Fortigate SSL VPNs based on CVE-2024-21762. It uses Shodan to find vulnerable devices and test their vulnerability.

## Features
- Uses Shodan API to find Fortigate devices running SSL VPN on port 10443.
- Checks the vulnerability status of the devices.
- Flexible shodan queries
- Displays the result with additional information such as organization and country.

## Requirements
- Python 3.x
- Shodan API Key

## Installation
1. Clone this repository:
    ```bash
    git clone https://github.com/rdoix/cve-2024-21762-checker.git
    cd cve-2024-21762-checker
    ```

2. Install dependencies:
    ```bash
    pip install -r requirements.txt
    ```

3. Set Shodan API Key as an environment variable:
    ```bash
    export SHODAN_API_KEY="YOUR_SHODAN_API_KEY"
    ```

## Usage
Run the script with the following command:
```bash
python3 cve-2024-21762-checker.py
```

## Example Output
```
1.1.1.1 | ABC Company | Indonesia | Vulnerable
1.1.2.2 | XYZ Corporation | United States | Patched
```

File Snapshot

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →