CVE-2024-23113
Fortinet Multiple Products Format String Vulnerability
⚠ KEVEPSS 54.4%
Description
Fortinet FortiOS, FortiPAM, FortiProxy, and FortiWeb contain a format string vulnerability that allows a remote, unauthenticated attacker to execute arbitrary code or commands via specially crafted requests.
How to fix CVE-2024-23113
No package mapping is available — consult the references below for vendor-specific guidance.
Is CVE-2024-23113 being exploited?
Yes — CVE-2024-23113 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (0)
No package mapping in OSV.