cvelistv5 - cve-2024-40590

CVE-2024-40590 (GCVE-0-2024-40590)

Vulnerability from cvelistv5

Published

2025-03-14 15:02

Modified

2025-03-14 18:02

Severity ?

4.8 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N/E:P/RL:U/RC:R

CWE

CWE-295 - Information disclosure

Summary

An improper certificate validation vulnerability [CWE-295] in FortiPortal version 7.4.0, version 7.2.4 and below, version 7.0.8 and below, version 6.0.15 and below when connecting to a FortiManager device, a FortiAnalyzer device, or an SMTP server may allow an unauthenticated attacker in a Man-in-the-Middle position to intercept on and tamper with the encrypted communication channel established between the FortiPortal and those endpoints.

References

URL

Tags

https://fortiguard.fortinet.com/psirt/FG-IR-22-155

Impacted products

	Vendor	Product	Version
	Fortinet	FortiPortal	Version: 7.4.0 Version: 7.2.0 ≤ 7.2.4 Version: 7.0.0 ≤ 7.0.8 Version: 6.0.0 ≤ 6.0.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-40590",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-14T18:02:26.893187Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-14T18:02:38.328Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [],
          "defaultStatus": "unaffected",
          "product": "FortiPortal",
          "vendor": "Fortinet",
          "versions": [
            {
              "status": "affected",
              "version": "7.4.0"
            },
            {
              "lessThanOrEqual": "7.2.4",
              "status": "affected",
              "version": "7.2.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.8",
              "status": "affected",
              "version": "7.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.0.15",
              "status": "affected",
              "version": "6.0.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An\u00a0improper certificate validation vulnerability [CWE-295] in FortiPortal version 7.4.0, version 7.2.4 and below, version 7.0.8 and below, version 6.0.15 and below when connecting to a FortiManager device, a FortiAnalyzer device, or an SMTP server may allow an unauthenticated attacker in a Man-in-the-Middle position to intercept on and tamper with the encrypted communication channel established between the FortiPortal and those endpoints."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N/E:P/RL:U/RC:R",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-295",
              "description": "Information disclosure",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-03-14T15:02:47.500Z",
        "orgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
        "shortName": "fortinet"
      },
      "references": [
        {
          "name": "https://fortiguard.fortinet.com/psirt/FG-IR-22-155",
          "url": "https://fortiguard.fortinet.com/psirt/FG-IR-22-155"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "value": "Please upgrade to FortiPortal version 7.4.1 or above \nPlease upgrade to FortiPortal version 7.2.5 or above \nPlease upgrade to FortiPortal version 7.0.9 or above"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "6abe59d8-c742-4dff-8ce8-9b0ca1073da8",
    "assignerShortName": "fortinet",
    "cveId": "CVE-2024-40590",
    "datePublished": "2025-03-14T15:02:47.500Z",
    "dateReserved": "2024-07-05T11:55:50.011Z",
    "dateUpdated": "2025-03-14T18:02:38.328Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTFR-2024-AVI-0979

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Fortinet. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Fortinet	FortiProxy	FortiProxy versions 7.4.x antérieures à 7.4.4
Fortinet	FortiAnalyzer	FortiAnalyzer-BigData versions antérieures à 7.4.1
Fortinet	FortiPortal	FortiPortal versions antérieures à 7.0.9
Fortinet	FortiWeb	FortiWeb versions antérieures à 7.4.4
Fortinet	FortiClient	FortiClientWindows versions 7.4.x antérieures à 7.4.1
Fortinet	FortiManager	FortiManager Cloud toutes versions
Fortinet	FortiProxy	FortiProxy versions antérieures à 7.2.10
Fortinet	FortiAnalyzer	FortiAnalyzer Cloud versions antérieures à 7.2.7
Fortinet	FortiPAM	FortiPAM versions antérieures à 1.3
Fortinet	FortiSwitchManager	FortiSwitchManager versions 7.2.x antérieures à 7.2.4
Fortinet	FortiAnalyzer	FortiAnalyzer versions antérieures à 7.4.3
Fortinet	FortiAnalyzer	FortiAnalyzer Cloud versions 7.4.x antérieures à 7.4.3
Fortinet	FortiPortal	FortiPortal versions 7.4.x antérieures à 7.4.1
Fortinet	FortiManager	FortiManager versions antérieures à 7.4.3
Fortinet	FortiSwitchManager	FortiSwitchManager versions 7.0.x antérieures à 7.0.4
Fortinet	FortiOS	FortiOS versions 7.4.x antérieures à 7.4.4
Fortinet	FortiClient	FortiClientWindows versions antérieures à 7.0.13
Fortinet	FortiClient	FortiClientMac versions 7.4.x antérieures à 7.4.1
Fortinet	FortiClient	FortiClientWindows versions 7.2.x antérieures à 7.2.5
Fortinet	FortiClient	FortiClientMac versions 7.2.x antérieures à 7.2.5
Fortinet	FortiOS	FortiOS versions antérieures à 7.0.15
Fortinet	FortiOS	FortiOS versions 7.2.x antérieures à 7.2.9
Fortinet	FortiWeb	FortiWeb versions 7.6.x antérieures à 7.6.1

References

Title

Publication Time

Tags

Bulletin de sécurité Fortinet FG-IR-23-396	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-022	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-115	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-033	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-116	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-180	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-199	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-475	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-144	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-125	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-179	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-099	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-267	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-22-155	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-205	2024-11-13	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-032	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-23-448	2024-11-12	vendor-advisory
Bulletin de sécurité Fortinet FG-IR-24-098	2024-11-12	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "FortiProxy versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiProxy",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer-BigData versions ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPortal versions ant\u00e9rieures \u00e0 7.0.9",
      "product": {
        "name": "FortiPortal",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiWeb versions ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiWeb",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiManager Cloud toutes versions",
      "product": {
        "name": "FortiManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiProxy versions ant\u00e9rieures \u00e0 7.2.10",
      "product": {
        "name": "FortiProxy",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer Cloud versions ant\u00e9rieures \u00e0 7.2.7",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPAM versions ant\u00e9rieures \u00e0 1.3",
      "product": {
        "name": "FortiPAM",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiSwitchManager versions 7.2.x ant\u00e9rieures \u00e0 7.2.4",
      "product": {
        "name": "FortiSwitchManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer versions ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiAnalyzer Cloud versions 7.4.x ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiAnalyzer",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiPortal versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiPortal",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiManager versions ant\u00e9rieures \u00e0 7.4.3",
      "product": {
        "name": "FortiManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiSwitchManager versions 7.0.x ant\u00e9rieures \u00e0 7.0.4",
      "product": {
        "name": "FortiSwitchManager",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions 7.4.x ant\u00e9rieures \u00e0 7.4.4",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions ant\u00e9rieures \u00e0 7.0.13",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientMac versions 7.4.x ant\u00e9rieures \u00e0 7.4.1",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientWindows versions 7.2.x ant\u00e9rieures \u00e0 7.2.5",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiClientMac versions 7.2.x ant\u00e9rieures \u00e0 7.2.5",
      "product": {
        "name": "FortiClient",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions ant\u00e9rieures \u00e0 7.0.15",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiOS versions 7.2.x ant\u00e9rieures \u00e0 7.2.9",
      "product": {
        "name": "FortiOS",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    },
    {
      "description": "FortiWeb versions 7.6.x ant\u00e9rieures \u00e0 7.6.1",
      "product": {
        "name": "FortiWeb",
        "vendor": {
          "name": "Fortinet",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-36509",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36509"
    },
    {
      "name": "CVE-2023-47543",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-47543"
    },
    {
      "name": "CVE-2024-26011",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-26011"
    },
    {
      "name": "CVE-2024-33505",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33505"
    },
    {
      "name": "CVE-2023-50176",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-50176"
    },
    {
      "name": "CVE-2024-40592",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40592"
    },
    {
      "name": "CVE-2024-31496",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-31496"
    },
    {
      "name": "CVE-2024-32117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32117"
    },
    {
      "name": "CVE-2023-44255",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-44255"
    },
    {
      "name": "CVE-2024-36507",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36507"
    },
    {
      "name": "CVE-2024-36513",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-36513"
    },
    {
      "name": "CVE-2024-47574",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-47574"
    },
    {
      "name": "CVE-2024-23666",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-23666"
    },
    {
      "name": "CVE-2024-40590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-40590"
    },
    {
      "name": "CVE-2024-32116",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32116"
    },
    {
      "name": "CVE-2024-35274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-35274"
    },
    {
      "name": "CVE-2024-32118",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-32118"
    },
    {
      "name": "CVE-2024-33510",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-33510"
    }
  ],
  "initial_release_date": "2024-11-13T00:00:00",
  "last_revision_date": "2024-11-13T00:00:00",
  "links": [],
  "reference": "CERTFR-2024-AVI-0979",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-11-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Fortinet. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Fortinet",
  "vendor_advisories": [
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-396",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-396"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-022",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-022"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-115",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-115"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-033",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-033"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-116",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-116"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-180",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-180"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-199",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-199"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-475",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-475"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-144",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-144"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-125",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-125"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-179",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-179"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-099",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-099"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-267",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-267"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-22-155",
      "url": "https://www.fortiguard.com/psirt/FG-IR-22-155"
    },
    {
      "published_at": "2024-11-13",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-205",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-205"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-032",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-032"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-23-448",
      "url": "https://www.fortiguard.com/psirt/FG-IR-23-448"
    },
    {
      "published_at": "2024-11-12",
      "title": "Bulletin de s\u00e9curit\u00e9 Fortinet FG-IR-24-098",
      "url": "https://www.fortiguard.com/psirt/FG-IR-24-098"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2024-40590 (GCVE-0-2024-40590)

Vulnerability from cvelistv5

CERTFR-2024-AVI-0979

Vulnerability from certfr_avis

Solutions

Tags

Sightings

Nomenclature