# N/A
## 概述
Fortinet FortiOS 和 FortiProxy 存在一个内存越界写漏洞,攻击者可以通过精心构造的请求执行未经授权的代码或命令。
## 影响版本
### FortiOS
- 7.4.0 至 7.4.2
- 7.2.0 至 7.2.6
- 7.0.0 至 7.0.13
- 6.4.0 至 6.4.14
- 6.2.0 至 6.2.15
- 6.0.0 至 6.0.17
### FortiProxy
- 7.4.0 至 7.4.2
- 7.2.0 至 7.2.8
- 7.0.0 至 7.0.14
- 2.0.0 至 2.0.13
- 1.2.0 至 1.2.13
- 1.1.0 至 1.1.6
- 1.0.0 至 1.0.7
## 细节
该漏洞允许攻击者通过精心构造的请求触发内存越界写,从而导致执行未经授权的代码或命令。
## 影响
攻击者可以利用该漏洞执行任意代码或命令,对系统安全构成重大威胁。
| # | POC 描述 | 源链接 | 神龙链接 |
|---|---|---|---|
| 1 | None | https://github.com/Gh71m/CVE-2024-21762-POC | POC详情 |
| 2 | FortiOS 6.0 - 7.4.2 Out of bound exploit --> RCE!!! | https://github.com/c0d3b3af/CVE-2024-21762-POC | POC详情 |
| 3 | Safely detect whether a FortiGate SSL VPN is vulnerable to CVE-2024-21762 | https://github.com/BishopFox/cve-2024-21762-check | POC详情 |
| 4 | CVE-2024-21762 POC Forti VPN SSL Out of Boundary RCE | https://github.com/tr1pl3ight/CVE-2024-21762-POC | POC详情 |
| 5 | FortiOS 6.0 - 7.4.2 Out of bound exploit --> RCE!!! | https://github.com/redCode001/CVE-2024-21762-POC | POC详情 |
| 6 | proof-of-concept out-of-bound write vuln in FortiOS ---> RCE | https://github.com/c0d3b3af/CVE-2024-21762-Exploit | POC详情 |
| 7 | Real proof-of-concept out-of-bound write vuln in FortiOS ---> RCE | https://github.com/RequestXss/CVE-2024-21762-Exploit-POC | POC详情 |
| 8 | CVE-2024-21762 is an out of bounds write vulnerability in fortinet fortios which leads to unauthenticated remote code execution | https://github.com/t4ril/CVE-2024-21762-PoC | POC详情 |
| 9 | RCE exploit for FortiOS 6.0-7.4.2 | https://github.com/c0d3b3af/CVE-2024-21762-RCE-exploit | POC详情 |
| 10 | This script performs vulnerability scanning for CVE-2024-21762, a Fortinet SSL VPN remote code execution vulnerability. It checks whether a given server is vulnerable to this CVE by sending specific requests and analyzing the responses. | https://github.com/cleverg0d/CVE-2024-21762-Checker | POC详情 |
| 11 | The only one working RCE exploit that sells for $5,000 on the darknet | https://github.com/JohnHormond/CVE-2024-21762-Fortinet-RCE-WORK | POC详情 |
| 12 | out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability | https://github.com/h4x0r-dz/CVE-2024-21762 | POC详情 |
| 13 | Chequea si tu firewall es vulnerable a CVE-2024-21762 (RCE sin autenticación) | https://github.com/r4p3c4/CVE-2024-21762-Exploit-PoC-Fortinet-SSL-VPN-Check | POC详情 |
| 14 | Fortinet CVE 2024 | https://github.com/vorotilovaawex/CVE-2024-21762_POC | POC详情 |
| 15 | None | https://github.com/TheRedDevil1/CVE-2024-21762 | POC详情 |
| 16 | The PoC demonstrates the potential for remote code execution by exploiting the identified security flaw. | https://github.com/d0rb/CVE-2024-21762 | POC详情 |
| 17 | CVE-2024-21762-POC replayse published | https://github.com/S0SkiPlosK1/CVE-2024-21762-POC | POC详情 |
| 18 | None | https://github.com/lore-is-already-taken/multicheck_CVE-2024-21762 | POC详情 |
| 19 | None | https://github.com/lolminerxmrig/multicheck_CVE-2024-21762 | POC详情 |
| 20 | None | https://github.com/AlexLondan/CVE-2024-21762-Fortinet-RCE-ALLWORK | POC详情 |
| 21 | None | https://github.com/zzcentury/FortiGate-CVE-2024-21762 | POC详情 |
| 22 | Full exploit of Cve-2024-21762! | https://github.com/Codeb3af/Cve-2024-21762- | POC详情 |
| 23 | None | https://github.com/rdoix/cve-2024-21762-checker | POC详情 |
| 24 | CVE-2024-21762 是 Fortinet 公司的 FortiOS 和 FortiProxy 产品中的一个严重漏洞,存在于其 SSL VPN 组件中。 | https://github.com/XiaomingX/cve-2024-21762-poc | POC详情 |
| 25 | Proof-of-concept scanner targeting CVE-2024-21762 in FortiOS SSL VPN’s /remote/hostcheck_validate endpoint with reverse shell payload delivery. | https://github.com/abrewer251/CVE-2024-21762_FortiNet_PoC | POC详情 |
暂无评论