EUVD-2024-23304

🗓️ 14 Oct 2025 18:30:27Reported by EUVDType

Improper exception handling enables unauthenticated fgfm reset via crafted SSL requests.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2024-26008	14 Oct 202515:23	–	attackerkb
CNNVD	Fortinet多款产品代码问题漏洞	14 Oct 202500:00	–	cnnvd
CVE	CVE-2024-26008	14 Oct 202515:23	–	cve
Cvelist	CVE-2024-26008	14 Oct 202515:23	–	cvelist
Tenable Nessus	Fortinet Fortigate FGFM protocol allows unauthenticated reset of the connection (FG-IR-24-041)	14 Oct 202500:00	–	nessus
NVD	CVE-2024-26008	14 Oct 202516:15	–	nvd
Positive Technologies	PT-2025-41941	14 Oct 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-26008	15 Oct 202515:47	–	redhatcve
Vulnrichment	CVE-2024-26008	14 Oct 202515:23	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "d1aa416c-ad71-390f-a406-06dab5de8b38",
        "vendor": {
          "name": "Fortinet"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0cdefc1b-bdee-3c83-b645-81f87d8a5662",
        "product": {
          "name": "FortiOS"
        },
        "product_version": "6.4.0 ≤6.4.16"
      },
      {
        "id": "16fbbc32-9fd1-3e51-8baf-98aad892fa8d",
        "product": {
          "name": "FortiSwitchManager"
        },
        "product_version": "7.0.0 ≤7.0.3"
      },
      {
        "id": "196e79c2-a4d2-3aae-80d8-62ca2b086703",
        "product": {
          "name": "FortiOS"
        },
        "product_version": "7.0.0 ≤7.0.17"
      },
      {
        "id": "374ce5b3-e105-371e-b0d8-48bb149cb3ab",
        "product": {
          "name": "FortiOS"
        },
        "product_version": "7.4.0 ≤7.4.3"
      },
      {
        "id": "3a95e2f6-8aff-3814-8147-8b5ca90b9555",
        "product": {
          "name": "FortiProxy"
        },
        "product_version": "7.2.0 ≤7.2.9"
      },
      {
        "id": "3b111e28-fbf9-358d-b9b0-df2c308c545b",
        "product": {
          "name": "FortiProxy"
        },
        "product_version": "1.2.0 ≤1.2.13"
      },
      {
        "id": "40560acd-47db-388d-9173-1e588de869eb",
        "product": {
          "name": "FortiPAM"
        },
        "product_version": "1.2.0"
      },
      {
        "id": "661c46fb-4e89-345c-9ed9-0a51c49a86f0",
        "product": {
          "name": "FortiPAM"
        },
        "product_version": "1.0.0 ≤1.0.3"
      },
      {
        "id": "69b333b6-bd34-3d9b-9c40-3958aa6cfdff",
        "product": {
          "name": "FortiProxy"
        },
        "product_version": "7.4.0 ≤7.4.3"
      },
      {
        "id": "b06e6b4e-f9ee-392b-93ac-aa1808f586fd",
        "product": {
          "name": "FortiSwitchManager"
        },
        "product_version": "7.2.0 ≤7.2.3"
      },
      {
        "id": "b7370149-b571-3aa9-b82a-253aa2ea1e44",
        "product": {
          "name": "FortiOS"
        },
        "product_version": "6.2.0 ≤6.2.17"
      },
      {
        "id": "b9e2d617-41ef-3909-986a-32a3e7984f54",
        "product": {
          "name": "FortiPAM"
        },
        "product_version": "1.1.0 ≤1.1.2"
      },
      {
        "id": "c8bbf725-034c-3769-bb25-cebd77a68bd1",
        "product": {
          "name": "FortiProxy"
        },
        "product_version": "2.0.0 ≤2.0.14"
      },
      {
        "id": "d9400da5-1041-3263-9463-7f2af75b4472",
        "product": {
          "name": "FortiOS"
        },
        "product_version": "7.2.0 ≤7.2.7"
      },
      {
        "id": "e7f07313-1b54-3ef3-af83-2df257813311",
        "product": {
          "name": "FortiProxy"
        },
        "product_version": "7.0.0 ≤7.0.21"
      }
    ]
  }
]

Source	Link
fortiguard	www.fortiguard.fortinet.com/psirt/FG-IR-24-041
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-26008

14 Oct 2025 18:30Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.15.3

EPSS0.00079