NOMISEC-watchtowrlabs/fortios-auth-bypass-poc-CVE-2024-55591

NOMISEC WORKING POC
Exploit for CVE-2024-55591 - Fortinet Fortiproxy < 7.0.20 - Authentication Bypass
AI Analysis

This PoC exploits an authentication bypass vulnerability (CVE-2024-55591) in Fortinet FortiOS by leveraging a WebSocket connection to execute arbitrary commands without proper authentication. It includes pre-flight checks to confirm vulnerability and establishes a WebSocket session to send crafted login contexts and commands.

Attack Type
auth_bypass
Complexity
moderate
Reliability
reliable
MITRE ATT&CK
T1190 - Exploit Public-Facing Application T1078 - Valid Accounts
Loading exploit code...
Download ZIP Password: eip
Source
Platform Nomisec
Type remote
Files 2
Stars 76
Forks 18
Last Push Jan 27, 2025
Authors
watchtowrlabs Sonny
Vulnerability
CVE-2024-55591
Fortinet Fortiproxy < 7.0.20 - Authentication Bypass
CRITICAL KEV
CVSS 9.8