Vulnerabilities > CVE-2024-33505 - Out-of-bounds Write vulnerability in Fortinet Fortianalyzer, Fortimanager and Fortimanager Cloud

047910
CVSS 7.3 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
LOW
network
low complexity
fortinet
CWE-787
NVD
Published: 2024-11-12
Updated: 2025-01-31

Summary

A heap-based buffer overflow in Fortinet FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, FortiManager version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14 allows attacker to escalation of privilege via specially crafted http requests

Vulnerable Configurations

Part Description Count
Application
Fortinet
134

Common Weakness Enumeration (CWE)

References