CVE-2024-55591

This PoC exploits an authentication bypass vulnerability (CVE-2024-55591) in Fortinet FortiOS by leveraging a WebSocket connection to execute arbitrary commands without proper authentication. It includes pre-flight checks to confirm vulnerability and establishes a WebSocket session to send crafted login contexts and commands.

This repository contains a Python script that checks for the presence of CVE-2024-55591, an authentication bypass vulnerability in Fortinet FortiOS. The script performs HTTP requests to specific endpoints and validates response conditions to determine if the target is vulnerable.

This PoC demonstrates an authentication bypass vulnerability in Fortinet FortiOS via WebSocket manipulation, allowing unauthorized access to system logs. It establishes a WebSocket connection with a crafted token and subscribes to event logs without authentication.

This repository contains a Python-based Proof of Concept (PoC) for CVE-2024-55591, an authentication bypass vulnerability in Fortinet devices (FortiOS and FortiProxy). The script automates dependency installation, port scanning, vulnerability checks, and exploitation via WebSocket to gain privileged CLI access.

This PoC exploits CVE-2024-55591, an authentication bypass vulnerability in Fortinet's FortiOS and FortiProxy, allowing remote command execution via a WebSocket connection with a crafted payload.

This repository contains a Python-based exploit for CVE-2024-55591, an authentication bypass vulnerability in Fortinet FortiOS and FortiProxy. The exploit allows unauthenticated command execution via a WebSocket-based CLI interface.

This is a functional PoC for CVE-2024-55591, an authentication bypass vulnerability in FortiOS that allows unauthenticated CLI access via WebSocket. It includes features for command execution, password resets, and interactive shell access.

The repository claims to provide an exploit and scanner for CVE-2024-55591 (FortiOS authentication bypass) but lacks actual exploit code, instead pushing external downloads via SatoshiDisk. The README is vague and marketing-heavy, with no technical details or functional code.

This repository provides a scanner for detecting CVE-2024-55591, an authentication bypass vulnerability in FortiGate and FortiProxy. It includes instructions for both single-target and batch scanning using the 1Scan tool.