Ptechhub
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs
No Result
View All Result
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs
No Result
View All Result
PtechHub
No Result
View All Result

Fortinet Warns of Critical FortiWLM Flaw That Could Lead to Admin Access Exploits

The Hacker News by The Hacker News
December 21, 2024
Home Cybersecurity
Share on FacebookShare on Twitter


Dec 19, 2024Ravie LakshmananVulnerability / Network Security

Fortinet has issued an advisory for a now-patched critical security flaw impacting Wireless LAN Manager (FortiWLM) that could lead to disclosure of sensitive information.

The vulnerability, tracked as CVE-2023-34990, carries a CVSS score of 9.6 out of a maximum of 10.0. It was originally fixed by Fortinet back in September 2023, but without a CVE designation.

“A relative path traversal [CWE-23] in FortiWLM may allow a remote unauthenticated attacker to read sensitive files,” the company said in an alert released Wednesday.

However, according to a description of the security flaw in the NIST’s National Vulnerability Database (NVD), the path traversal vulnerability could also be exploited by an attacker to “execute unauthorized code or commands via specially crafted web requests.”

Cybersecurity

The flaw impacts the following versions of the product –

  • FortiWLM versions 8.6.0 through 8.6.5 (Fixed in 8.6.6 or above)
  • FortiWLM versions 8.5.0 through 8.5.4 (Fixed in 8.5.5 or above)

The company credited Horizon3.ai security researcher Zach Hanley for discovering and reporting the shortcoming. It’s worth mentioning here that CVE-2023-34990 refers to the “unauthenticated limited file read vulnerability” the cybersecurity company revealed back in March as part of a broader set of six flaws in FortiWLM.

“This vulnerability allows remote, unauthenticated attackers to access and abuse builtin functionality meant to read specific log files on the system via a crafted request to the /ems/cgi-bin/ezrf_lighttpd.cgi endpoint,” Hanley said at the time.

“This issue results from the lack of input validation on request parameters allowing an attacker to traverse directories and read any log file on the system.”

A successful exploitation of CVE-2023-34990 could allow the threat actor to read FortiWLM log files and get hold of the session ID of a user and login, thereby allowing them to exploit authenticated endpoints as well.

To make matters worse, the attackers could take advantage of the fact that the web session IDs are static between user sessions to hijack them and gain administrative permissions to the appliance.

That’s not all. An attacker could also combine CVE-2023-34990 with CVE-2023-48782 (CVSS score: 8.8), an authenticated command injection flaw that has also been fixed in FortiWLM 8.6.6, to obtain remote code execution in the context of root.

Separately patched by Fortinet is a high-severity operating system command injection vulnerability in FortiManager that may allow an authenticated remote attacker to execute unauthorized code via FGFM-crafted requests.

Cybersecurity

The vulnerability (CVE-2024-48889, CVSS score: 7.2) has been addressed in the below versions –

  • FortiManager 7.6.0 (Fixed in 7.6.1 or above)
  • FortiManager versions 7.4.0 through 7.4.4 (Fixed in 7.4.5 or above)
  • FortiManager Cloud versions 7.4.1 through 7.4.4 (Fixed in 7.4.5 or above)
  • FortiManager versions 7.2.3 through 7.2.7 (Fixed in 7.2.8 or above)
  • FortiManager Cloud versions 7.2.1 through 7.2.7 (Fixed in 7.2.8 or above)
  • FortiManager versions 7.0.5 through 7.0.12 (Fixed in 7.0.13 or above)
  • FortiManager Cloud versions 7.0.1 through 7.0.12 (Fixed in 7.0.13 or above)
  • FortiManager versions 6.4.10 through 6.4.14 (Fixed in 6.4.15 or above)

Fortinet also noted that a number of older models, 1000E, 1000F, 2000E, 3000E, 3000F, 3000G, 3500E, 3500F, 3500G, 3700F, 3700G, and 3900E, are affected by CVE-2024-48889 provided the “fmg-status” is enabled.

With Fortinet devices becoming an attack magnet for threat actors, it’s essential that users keep their instances up-to-date to safeguard against potential threats.

Found this article interesting? Follow us on Twitter  and LinkedIn to read more exclusive content we post.





Source link

Tags: computer securitycyber attackscyber newscyber security newscyber security news todaycyber security updatescyber updatesdata breachhacker newshacking newshow to hackinformation securitynetwork securityransomware malwaresoftware vulnerabilitythe hacker news
The Hacker News

The Hacker News

Next Post
Latest attempt to override UK’s outdated hacking law stalls | Computer Weekly

Latest attempt to override UK’s outdated hacking law stalls | Computer Weekly

Recommended.

DXC Expands Consulting & Engineering Services Leadership to Scale AI-led Growth

DXC Expands Consulting & Engineering Services Leadership to Scale AI-led Growth

April 17, 2026
MiTAC Computing возвращается на OCP EMEA 2026 с новыми серверами OCP с жидкостным охлаждением и интеграцией программного обеспечения

MiTAC Computing возвращается на OCP EMEA 2026 с новыми серверами OCP с жидкостным охлаждением и интеграцией программного обеспечения

April 29, 2026

Trending.

AWS Vs. Google Cloud Vs. Microsoft Azure Q1 Earnings Face-Off

AWS Vs. Google Cloud Vs. Microsoft Azure Q1 Earnings Face-Off

May 1, 2026
Cloud Market Share Q1 2026: AWS, Microsoft, Google Battling In AI Era

Cloud Market Share Q1 2026: AWS, Microsoft, Google Battling In AI Era

May 4, 2026
Google’s 0 Million Partner Fund Targets AI Agent Era Channel Paradigm Shift

Google’s $750 Million Partner Fund Targets AI Agent Era Channel Paradigm Shift

April 24, 2026
AWS Solution Provider Caylent Unveils Dedicated Anthropic Claude Unit

AWS Solution Provider Caylent Unveils Dedicated Anthropic Claude Unit

April 30, 2026
Dell’s Infrastructure Blitz: Private Cloud, PowerStore Elite, PowerEdge In Spotlight At Dell Technologies World 2026

Dell’s Infrastructure Blitz: Private Cloud, PowerStore Elite, PowerEdge In Spotlight At Dell Technologies World 2026

May 19, 2026

PTechHub

A tech news platform delivering fresh perspectives, critical insights, and in-depth reporting — beyond the buzz. We cover innovation, policy, and digital culture with clarity, independence, and a sharp editorial edge.

Follow Us

Industries

  • AI & ML
  • Cybersecurity
  • Enterprise IT
  • Finance
  • Telco

Navigation

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Subscribe to Our Newsletter

  • About
  • Advertise
  • Privacy & Policy
  • Contact

Copyright © 2025 | Powered By Porpholio

No Result
View All Result
  • News
  • Industries
    • Enterprise IT
    • AI & ML
    • Cybersecurity
    • Finance
    • Telco
  • Brand Hub
    • Lifesight
  • Blogs

Copyright © 2025 | Powered By Porpholio