CVE-2024-21762 PoC — Fortinet FortiOS 缓冲区错误漏洞

Source

https://github.com/r4p3c4/CVE-2024-21762-Exploit-PoC-Fortinet-SSL-VPN-Check

Associated Vulnerability

Title:Fortinet FortiOS 缓冲区错误漏洞 (CVE-2024-21762)
Description:A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7 allows attacker to execute unauthorized code or commands via specifically crafted requests

Description

Chequea si tu firewall es vulnerable a CVE-2024-21762 (RCE sin autenticación)

Readme

# CVE-2024-21762-Exploit-PoC-Fortinet-SSL-VPN-Check
Chequea si tu firewall es vulnerable a CVE-2024-21762 (RCE sin autenticación)

Para más información sobre la vulnerabilidad: https://www.incibe.es/en/incibe-cert/early-warning/vulnerabilities/cve-2024-21762

# Aprende a detectar la vulnerabilidad y a proteger tu empresa

Video youtube : https://www.youtube.com/watch?v=E8lTxlblAgE&t=4s&ab_channel=r4p3c4

# Uso:
    python3 check-cve-2024-21762.py <host> <port>

## Ejemplo vulnerable (al azar):
    
python3 check-cve-2024-21762.py 72.158.15.130 10443

Vulnerable

## Ejemplo no vulnerable (al azar):

python3 check-cve-2024-21762.py 72.12.164.134 443  
[warning] Server does not look like a Fortinet SSL VPN interface

Patched

File Snapshot


 [4.0K]  /data/pocs/f226b1c22339c5e1c08692bc90ffed8a9b1d0ec0
├── [1.4K]  check-cve-2024-21762.py
├── [ 43K]  Firmware vulnerable.png
├── [ 18K]  LICENSE
└── [ 736]  README.md

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!