CVE-2024-36511

An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web Application Firewall (WAF) 7.4.0 through 7.4.4, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions, 6.0 all versions when cookie security policy is enabled may allow an attacker, under specific conditions, to retrieve the initial encrypted and signed cookie protected by the feature

CVSS v3 3.7 LOW

3.7^/10

CVSS v3 : LOW

Vector :

Exploitability : 2.2 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://fortiguard.fortinet.com/psirt/FG-IR-22-256	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:fortinet:fortiadc:*:*:*:*:*:*:*:*

History

20 Sep 2024, 19:43

Type	Values Removed	Values Added
References	~~() https://fortiguard.fortinet.com/psirt/FG-IR-22-256 -~~	() https://fortiguard.fortinet.com/psirt/FG-IR-22-256 - Vendor Advisory
First Time		Fortinet Fortinet fortiadc
CPE		cpe:2.3:a:fortinet:fortiadc::::::::
CWE		NVD-CWE-noinfo

10 Sep 2024, 15:50

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-09-10 15:15

Updated : 2024-09-20 19:43

NVD link : CVE-2024-36511

Mitre link : CVE-2024-36511

CVE.ORG link : CVE-2024-36511

JSON object : View

Products Affected

fortinet

fortiadc

CWE

NVD-CWE-noinfo CWE-358

Improperly Implemented Security Check for Standard

{"id": "CVE-2024-36511", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.7, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.2}, {"type": "Secondary", "source": "psirt@fortinet.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.7, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 2.2}]}, "published": "2024-09-10T15:15:16.610", "references": [{"url": "https://fortiguard.fortinet.com/psirt/FG-IR-22-256", "tags": ["Vendor Advisory"], "source": "psirt@fortinet.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}, {"type": "Secondary", "source": "psirt@fortinet.com", "description": [{"lang": "en", "value": "CWE-358"}]}], "descriptions": [{"lang": "en", "value": "An improperly implemented security check for standard vulnerability [CWE-358] in FortiADC Web Application Firewall (WAF) 7.4.0 through 7.4.4, 7.2 all versions, 7.1 all versions, 7.0 all versions, 6.2 all versions, 6.1 all versions, 6.0 all versions when cookie security policy is enabled may allow an attacker, under specific conditions, to retrieve the initial encrypted and signed cookie protected by the feature"}, {"lang": "es", "value": "Una verificaci\u00f3n de seguridad implementada incorrectamente para la vulnerabilidad est\u00e1ndar [CWE-358] en FortiADC Web Application Firewall (WAF) 7.4.0 a 7.4.4, 7.2 todas las versiones, 7.1 todas las versiones, 7.0 todas las versiones, 6.2 todas las versiones, 6.1 todas las versiones, 6.0 todas las versiones cuando la pol\u00edtica de seguridad de cookies est\u00e1 habilitada puede permitir que un atacante, bajo condiciones espec\u00edficas, recupere la cookie inicial cifrada y firmada protegida por la funci\u00f3n."}], "lastModified": "2024-09-20T19:43:25.023", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fortinet:fortiadc:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8E03AC9-E6B8-4DA9-B742-E1946A00A64C", "versionEndExcluding": "7.4.5", "versionStartIncluding": "6.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@fortinet.com"}