CVE-2024-48887

CRITICAL

FortiSwitch >=6.4.0 <6.4.15 - Unauthenticated Password Change via GUI Request

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-48887. PoCs published by groshi215, cybersecplayground.

AI-analyzed exploit summary The repository claims to exploit an unverified password change vulnerability in Fortinet FortiSwitch GUI but provides no actual exploit code. Instead, it directs users to download the exploit from an external URL (tinyurl.com), which is a common tactic for distributing malware or scams.

Description

A unverified password change vulnerability in Fortinet FortiSwitch GUI may allow a remote unauthenticated attacker to change admin passwords via a specially crafted request

Exploits (2)

nomisec SUSPICIOUS 2 stars

by groshi215 · poc

https://github.com/groshi215/CVE-2024-48887-Exploit

View Code ZIP pw:eip

The repository claims to exploit an unverified password change vulnerability in Fortinet FortiSwitch GUI but provides no actual exploit code. Instead, it directs users to download the exploit from an external URL (tinyurl.com), which is a common tactic for distributing malware or scams.

Classification

Suspicious 95%

Attack Type

Auth Bypass

Complexity

Theoretical

Reliability

Theoretical

Target: Fortinet FortiSwitch GUI

No auth needed

Prerequisites: Network access to the target FortiSwitch device

MITRE ATT&CK

T1110.001 - Password Guessing T1078 - Valid Accounts

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WORKING POC 2 stars

by cybersecplayground · poc

https://github.com/cybersecplayground/CVE-2024-48887-FortiSwitch-Exploit

View Code ZIP pw:eip

The repository contains a functional JavaScript PoC that demonstrates an authentication bypass vulnerability in FortiSwitch devices, allowing unauthorized password changes via a crafted POST request to the /change_pass endpoint.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Fortinet FortiSwitch (version not specified)

No auth needed

Prerequisites: Network access to the target FortiSwitch device · Knowledge of the target IP address

MITRE ATT&CK

T1110.001 - Password Guessing T1078 - Valid Accounts

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory

https://fortiguard.fortinet.com/psirt/FG-IR-24-435

Scores

CVSS v3 9.8

EPSS 0.0249

EPSS Percentile 85.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-620

Status published

Products (2)

fortinet/fortiswitch 7.6.0

fortinet/fortiswitch 6.4.0 - 6.4.15

Published Apr 08, 2025

Tracked Since Feb 18, 2026