CVE-2024-33503
EUVD-2024-3124114.01.2025, 14:15
A improper privilege management in Fortinet FortiManager version 7.4.0 through 7.4.3, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14, FortiAnalyzer version 7.4.0 through 7.4.2, 7.2.0 through 7.2.5, 7.0.0 through 7.0.12, 6.4.0 through 6.4.14 allows attacker to escalation of privilege via specific shell commandsEnginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| fortinet | fortianalyzer | 6.4.0 ≤ 𝑥 < 7.2.6 |
| fortinet | fortianalyzer | 7.4.0 ≤ 𝑥 < 7.4.4 |
| fortinet | fortianalyzer_cloud | 6.4.1 ≤ 𝑥 < 7.2.7 |
| fortinet | fortianalyzer_cloud | 7.4.1 ≤ 𝑥 < 7.4.3 |
| fortinet | fortimanager | 6.4.0 ≤ 𝑥 < 7.2.6 |
| fortinet | fortimanager | 7.4.0 ≤ 𝑥 < 7.4.4 |
| fortinet | fortimanager_cloud | 7.0.1 ≤ 𝑥 < 7.2.7 |
| fortinet | fortimanager_cloud | 7.4.1 ≤ 𝑥 < 7.4.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration