CVE-2024-23108

CRITICAL EXPLOITED RANSOMWARE NUCLEI

Fortinet FortiSIEM - OS Command Injection

Title source: nuclei

Description

An improper neutralization of special elements used in an os command ('os command injection') vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests.

Exploits (2)

nomisec WORKING POC 34 stars

by horizon3ai · remote

https://github.com/horizon3ai/CVE-2024-23108

View Code ZIP pw:eip

nomisec WORKING POC 5 stars

by hitem · remote

https://github.com/hitem/CVE-2024-23108

View Code ZIP pw:eip

Nuclei Templates (1)

Fortinet FortiSIEM - OS Command Injection

CRITICALby 0x_Akoko

Shodan: port:"7900" || http.favicon.hash:"-1341442175" || http.html:"var hst = location.hostname"

FOFA: body="var hst = location.hostname" || icon_hash="-1341442175"

References (2)

[Vendor Advisory] https://fortiguard.com/psirt/FG-IR-23-130

[Various Sources] https://github.com/horizon3ai/CVE-2024-23108

Scores

CVSS v3 10.0

EPSS 0.9039

EPSS Percentile 99.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

VulnCheck KEV 2025-02-25

Ransomware Use Confirmed

CWE

CWE-78

Status published

Products (3)

fortinet/fortisiem 7.1.0

fortinet/fortisiem 7.1.1

fortinet/fortisiem 6.4.0 - 6.4.2

Published Feb 05, 2024

Tracked Since Feb 18, 2026