CVE-2024-21762
Fortinet / FortiOS
Ransomware campaign
Added 2024-02-09
Due 2024-02-16
Fortinet FortiOS Out-of-Bound Write Vulnerability
Fortinet FortiOS contains an out-of-bound write vulnerability that allows a remote unauthenticated attacker to execute code or commands via specially crafted HTTP requests.
Required action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes: https://fortiguard.fortinet.com/psirt/FG-IR-24-015 ; https://nvd.nist.gov/vuln/detail/CVE-2024-21762
Metadata
| Added to KEV | 2024-02-09 |
| Remediation due | 2024-02-16 |
| Ransomware use | Known |
| CWEs | CWE-787 |
| Ingested | 2026-04-24 15:03:13 |
Cross-mesh regulatory overlay
If you're breached via this CVE, what disclosure laws and cyber regs fire? Asks LexiWorld and RegulatoryRadar via signed mesh.